CVE-2018-7930

Name of the Vulnerable Software and Affected Versions: Huawei Mate 9 versions prior to MHA-L29B 8.0.0.366(C567)

Description: The issue is related to an information leak due to insufficient validation on data transfer requests in the Near Field Communication (NFC) module. When an affected mobile phone sends files to another device using the NFC function, an attacker can obtain arbitrary files, causing information leaks.

Recommendations: For versions prior to MHA-L29B 8.0.0.366(C567), update to version MHA-L29B 8.0.0.366(C567) or later to resolve the issue. As a temporary workaround, consider disabling the NFC function to minimize the risk of exploitation. Restrict access to sensitive files on the device to reduce the potential impact of the information leak.