MEDIUM🇵🇱 Wersja polska

CVE-2020-9244

CVSS 6.8v3.1pub. 2020-08-11upd. 2024-11-21

HUAWEI Mate 20 versions Versions earlier than 10.1.0.160(C00E160R3P8);HUAWEI Mate 20 Pro versions Versions earlier than 10.1.0.270(C431E7R1P5),Versions earlier than 10.1.0.270(C635E3R1P5),Versions earlier than 10.1.0.273(C636E7R2P4);HUAWEI Mate 20 X versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI Mate 20 RS versions Versions earlier than 10.1.0.160(C786E160R3P8);HonorMagic2 versions Versions earlier than 10.0.0.187(C00E61R2P11);Honor20 versions Versions earlier than 10.0.0.175(C00E58R4P11);Honor20 PRO versions Versions earlier than 10.0.0.194(C00E62R8P12);HonorMagic2 versions Versions earlier than 10.0.0.187(C00E61R2P11);HonorV20 versions Versions earlier than 10.0.0.188(C00E62R2P11) have an improper authentication vulnerability. The system does not properly sign certain encrypted file, the attacker should gain the key used to encrypt the file, successful exploit could cause certain file be forged

CVSS Vector
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Huawei Honor 20

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor 20 Firmware

    OS
    Huawei
    < 10.0.0.175\(c00e58r4p11\)
  • Huawei Honor 20 Pro

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor 20 Pro Firmware

    OS
    Huawei
    < 10.0.0.194\(c00e62r8p12\)
  • Huawei Honor Magic 2

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor Magic 2 Firmware

    OS
    Huawei
    < 10.0.0.187\(c00e61r2p11\)
  • Huawei Honor V20

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor V20 Firmware

    OS
    Huawei
    < 10.0.0.188\(c00e62r2p11\)
  • Huawei Mate 20

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 20 Firmware

    OS
    Huawei
    < 10.1.0.160\(c00e160r3p8\)
  • Huawei Mate 20 Pro

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 20 Pro Firmware

    OS
    Huawei
    < 10.1.0.273\(c636e7r2p4\)< 10.1.0.270\(c431e7r1p5\)< 10.1.0.270\(c635e3r1p5\)
  • Huawei Mate 20 Rs

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 20 Rs Firmware

    OS
    Huawei
    < 10.1.0.160\(c786e160r3p8\)
  • Huawei Mate 20 X

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 20 X Firmware

    OS
    Huawei
    < 10.1.0.160\(c00e160r2p8\)
  • Huawei P30

    HW
    Huawei
    wszystkie wersje
  • Huawei P30 Firmware

    OS
    Huawei
    < 10.1.0.160\(c00e160r2p11\)
  • Huawei P30 Pro

    HW
    Huawei
    wszystkie wersje
  • Huawei P30 Pro Firmware

    OS
    Huawei
    < 10.1.0.160\(c00e160r2p8\)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-0069HIGH7.8⚠ KEVten sam produkt

In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to ins...

CVE-2020-9080HIGH7.8ten sam produkt

There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated ...

CVE-2021-22331HIGH7.5ten sam produkt

There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inp...

CVE-2020-9223HIGH7.5ten sam produkt

There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of recei...

CVE-2020-9247HIGH7.8ten sam produkt

There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate...