CVE-2025-20670

Name of the Vulnerable Software and Affected Versions Huawei Modem (affected versions not specified)

Description The issue is related to a possible permission bypass due to improper certificate validation in the Modem. This could lead to remote information disclosure if a UE has connected to a rogue base station controlled by the attacker, with User execution privileges needed. User interaction is needed for exploitation.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.