Lucene search

[email protected]CVE-2020-9239

HistorySep 11, 2020 - 2:15 p.m.

CVE-2020-9239

2020-09-1114:15:00

CWE-20

[email protected]

web.nvd.nist.gov

cve-2020-9239

huawei smartphones

information vulnerability

security

nvd

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.5 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

12.3%

JSON

Huawei smartphones BLA-A09 versions 8.0.0.123(C212),versions earlier than 8.0.0.123(C567),versions earlier than 8.0.0.123(C797);BLA-TL00B versions earlier than 8.1.0.326(C01);Berkeley-L09 versions earlier than 8.0.0.163(C10),versions earlier than 8.0.0.163(C432),Versions earlier than 8.0.0.163(C636),Versions earlier than 8.0.0.172(C10);Duke-L09 versions Duke-L09C10B187, versions Duke-L09C432B189, versions Duke-L09C636B189;HUAWEI P20 versions earlier than 8.0.1.16(C00);HUAWEI P20 Pro versions earlier than 8.1.0.152(C00);Jimmy-AL00A versions earlier than Jimmy-AL00AC00B172;LON-L29D versions LON-L29DC721B192;NEO-AL00D versions earlier than 8.1.0.172(C786);Stanford-AL00 versions Stanford-AL00C00B123;Toronto-AL00 versions earlier than Toronto-AL00AC00B225;Toronto-AL00A versions earlier than Toronto-AL00AC00B225;Toronto-TL10 versions earlier than Toronto-TL10C01B225 have an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerab

CPENameOperatorVersion
huawei:bla-a09_firmwarehuawei bla-a09 firmwareeq8.0.0.123\(c212\)
huawei:bla-a09_firmwarehuawei bla-a09 firmwarelt8.0.0.123\(c567\)
huawei:bla-a09_firmwarehuawei bla-a09 firmwarelt8.0.0.123\(c797\)
huawei:bla-tl00b_firmwarehuawei bla-tl00b firmwarelt8.1.0.326\(c01\)
huawei:berkeley-l09_firmwarehuawei berkeley-l09 firmwarelt8.0.0.163\(c10\)
huawei:berkeley-l09_firmwarehuawei berkeley-l09 firmwarele8.0.0.163\(c432\)
huawei:berkeley-l09_firmwarehuawei berkeley-l09 firmwarelt8.0.0.163\(c636\)
huawei:berkeley-l09_firmwarehuawei berkeley-l09 firmwarelt8.0.0.172\(c10\)
huawei:duke-l09_firmwarehuawei duke-l09 firmwareeqduke-l09c10b187
huawei:duke-l09_firmwarehuawei duke-l09 firmwareeqduke-l09c432b189

CPE	Name	Operator	Version
huawei:bla-a09_firmware	huawei bla-a09 firmware	eq	8.0.0.123\(c212\)
huawei:bla-a09_firmware	huawei bla-a09 firmware	lt	8.0.0.123\(c567\)
huawei:bla-a09_firmware	huawei bla-a09 firmware	lt	8.0.0.123\(c797\)
huawei:bla-tl00b_firmware	huawei bla-tl00b firmware	lt	8.1.0.326\(c01\)
huawei:berkeley-l09_firmware	huawei berkeley-l09 firmware	lt	8.0.0.163\(c10\)
huawei:berkeley-l09_firmware	huawei berkeley-l09 firmware	le	8.0.0.163\(c432\)
huawei:berkeley-l09_firmware	huawei berkeley-l09 firmware	lt	8.0.0.163\(c636\)
huawei:berkeley-l09_firmware	huawei berkeley-l09 firmware	lt	8.0.0.172\(c10\)
huawei:duke-l09_firmware	huawei duke-l09 firmware	eq	duke-l09c10b187
huawei:duke-l09_firmware	huawei duke-l09 firmware	eq	duke-l09c432b189

Rows per page:

1-10 of 201

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20200909-04-smartphone-en

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

5.5 Medium

AI Score

Confidence

High

2.1 Low

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

0.0004 Low

EPSS

Percentile

12.3%

JSON

Related for CVE-2020-9239

prion1 cvelist1 huawei1