CVE-2020-36600

2022-09-1618:15:11

CWE-787

[email protected]

web.nvd.nist.gov

cve-2020-36600

out-of-bounds write

vulnerability

power consumption

system restart

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

38.4%

JSON

Out-of-bounds write vulnerability in the power consumption module. Successful exploitation of this vulnerability may cause the system to restart.

Affected configurations

NVD

Node

huaweiemuiMatch10.0.0

huaweiemuiMatch10.1.0

huaweiemuiMatch10.1.1

huaweiemuiMatch11.0.0

huaweimagic_uiMatch3.0.0

huaweimagic_uiMatch3.1.0

huaweimagic_uiMatch3.1.1

huaweimagic_uiMatch4.0.0

CPENameOperatorVersion
huawei:emuihuawei emuieq10.0.0
huawei:emuihuawei emuieq10.1.0
huawei:emuihuawei emuieq10.1.1
huawei:emuihuawei emuieq11.0.0
huawei:magic_uihuawei magic uieq3.0.0
huawei:magic_uihuawei magic uieq3.1.0
huawei:magic_uihuawei magic uieq3.1.1
huawei:magic_uihuawei magic uieq4.0.0

CPE	Name	Operator	Version
huawei:emui	huawei emui	eq	10.0.0
huawei:emui	huawei emui	eq	10.1.0
huawei:emui	huawei emui	eq	10.1.1
huawei:emui	huawei emui	eq	11.0.0
huawei:magic_ui	huawei magic ui	eq	3.0.0
huawei:magic_ui	huawei magic ui	eq	3.1.0
huawei:magic_ui	huawei magic ui	eq	3.1.1
huawei:magic_ui	huawei magic ui	eq	4.0.0

CNA Affected

[
  {
    "product": "EMUI",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "10.0.0"
      },
      {
        "status": "affected",
        "version": "10.1.0"
      },
      {
        "status": "affected",
        "version": "10.1.1"
      },
      {
        "status": "affected",
        "version": "11.0.0"
      }
    ]
  },
  {
    "product": "Magic UI",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "3.0.0"
      },
      {
        "status": "affected",
        "version": "3.1.0"
      },
      {
        "status": "affected",
        "version": "3.1.1"
      },
      {
        "status": "affected",
        "version": "4.0.0"
      }
    ]
  }
]