MEDIUM🇬🇧 English

CVE-2020-1792

CVSS 5.5v3.1pub. 2020-02-28upd. 2024-11-21

Honor V10 smartphones with versions earlier than BKL-AL20 10.0.0.156(C00E156R2P4) and versions earlier than BKL-L09 10.0.0.146(C432E4R1P4) have an out of bounds write vulnerability. The software writes data past the end of the intended buffer because of insufficient validation of certain parameter when initializing certain driver program. An attacker could trick the user into installing a malicious application, successful exploit could cause the device to reboot.

oryginał EN
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
  • Huawei Honor V10

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor V10 Firmware

    OS
    Huawei
    < bkl-al20_10.0.0.156\(c00e156r2p4\)< bkl-l09_10.0.0.146\(c432e4r1p4\)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2020-1804HIGH7.1ten sam produkt

Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulner...

CVE-2020-1805HIGH7.1ten sam produkt

Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulner...

CVE-2020-1806HIGH7.1ten sam produkt

Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulner...

CVE-2020-1785MEDIUM5.5ten sam produkt

Mate 10 Pro;Honor V10;Honor 10;Nova 4 smartphones have a denial of service vulnerability. The system does not ...

CVE-2019-5251MEDIUM5.5ten sam produkt

There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently valida...