CVE-2020-9252

🗓️ 17 Jul 2020 22:50:17Reported by huaweiType

HUAWEI Mate 20, Mate 20 X, Mate 20 RS, Honor Magic2 path traversal vulnerabilit

Reporter	Title	Published	Views	Family All 7
Cvelist	CVE-2020-9252	17 Jul 202022:50	–	cvelist
EUVD	EUVD-2020-30081	7 Oct 202500:30	–	euvd
Huawei	Security Advisory - Path Traversal Vulnerability in Several Smartphones	15 Jul 202000:00	–	huawei
NVD	CVE-2020-9252	17 Jul 202023:15	–	nvd
OSV	CVE-2020-9252	17 Jul 202023:15	–	osv
Prion	Path traversal	17 Jul 202023:15	–	prion
RedhatCVE	CVE-2020-9252	22 May 202517:35	–	redhatcve

NVD

Vulners

Node

huawei mate_20_firmwareRange<10.1.0.160(c00e160r3p8)

AND

huawei mate_20Match-

Node

huawei mate_20_x_firmwareRange<10.1.0.135(c00e135r2p8)

AND

huawei mate_20_xMatch-

Node

huawei mate_20_rs_firmwareRange<10.1.0.160(c786e160r3p8)

AND

huawei mate_20_rsMatch-

Node

huawei magic2_firmwareRange<10.1.0.160(c00e160r2p11)

AND

huawei magic2Match-

[
  {
    "product": "HUAWEI Mate 20",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Versions earlier than 10.1.0.160(C00E160R3P8)"
      }
    ]
  },
  {
    "product": "HUAWEI Mate 20 X",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Versions earlier than 10.1.0.135(C00E135R2P8)"
      }
    ]
  },
  {
    "product": "HUAWEI Mate 20 RS",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Versions earlier than 10.1.0.160(C786E160R3P8)"
      }
    ]
  },
  {
    "product": "Honor Magic2",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Versions earlier than 10.1.0.160(C00E160R2P11)"
      }
    ]
  }
]

Source	Link
huawei	www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-07-smartphone-en

21 Nov 2024 05:40Current

4Medium risk

Vulners AI Score4

CVSS 22.1

CVSS 3.12.3

EPSS0.00031

CWE-22

cve-2020-9252 huawei mate 20 mate 20 x mate 20 rs honor magic2 path traversal vulnerability nvd exploit security