CVE-2020-9140

2021-01-1321:55:57

huawei

www.cve.org

9.9 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.5%

JSON

There is a vulnerability with buffer access with incorrect length value in some Huawei Smartphone.Unauthorized users may trigger code execution when a buffer overflow occurs.

CNA Affected

[
  {
    "product": "EMUI;Magic UI",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, EMUI 9.1.0"
      },
      {
        "status": "affected",
        "version": "Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1"
      }
    ]
  }
]

References

consumer.huawei.com/en/support/bulletin/2020/12/