MEDIUM🇬🇧 English

CVE-2020-9119

CVSS 6.2v3.1pub. 2020-12-24upd. 2024-11-21

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.

oryginał EN
CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Huawei Mate 10

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 10 Firmware

    OS
    Huawei
    < 10.0.0.189\(c185e6r1p3\)
  • Huawei Mate 30

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 30 Firmware

    OS
    Huawei
    < 10.1.0.156\(c00e155r7p2\)
  • Huawei Mate 30 Pro

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 30 Pro Firmware

    OS
    Huawei
    < 10.1.0.156\(c00e156r7p2\)
  • Huawei P40

    HW
    Huawei
    wszystkie wersje
  • Huawei P40 Firmware

    OS
    Huawei
    < 10.1.0.150\(sp1c00e150r4p1\)
  • Huawei P40 Pro

    HW
    Huawei
    wszystkie wersje
  • Huawei P40 Pro Firmware

    OS
    Huawei
    < 10.1.0.150\(sp1c00e150r4p1\)
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
LPE
CWE
Referencje

Powiązane podatności

CVE-2021-37104HIGH7.5ten sam produkt

There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3). This vuln...

CVE-2020-9263HIGH7.8ten sam produkt

HUAWEI Mate 30 versions earlier than 10.1.0.150(C00E136R5P3) and HUAWEI P30 version earlier than 10.1.0.160(C0...

CVE-2020-9261HIGH7.8ten sam produkt

HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a type confusion vulnerability. The sys...

CVE-2020-9262HIGH7.8ten sam produkt

HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a use after free vulnerability. There i...

CVE-2020-0022HIGH8.8ten sam produkt

In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect ...