CVE-2020-9144

2021-01-1318:53:04

huawei

www.cve.org

9.5 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

65.2%

JSON

There is a heap overflow vulnerability in some Huawei smartphone, attackers can exploit this vulnerability to cause heap overflows due to improper restriction of operations within the bounds of a memory buffer.

CNA Affected

[
  {
    "product": "EMUI",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "EMUI 11.0.0"
      },
      {
        "status": "affected",
        "version": "EMUI 10.1.1"
      },
      {
        "status": "affected",
        "version": "EMUI 10.1.0"
      },
      {
        "status": "affected",
        "version": "EMUI 10.0.0"
      },
      {
        "status": "affected",
        "version": "EMUI 9.1.1"
      },
      {
        "status": "affected",
        "version": "EMUI 9.1.0"
      }
    ]
  },
  {
    "product": "Magic UI",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Magic UI 4.0.0"
      },
      {
        "status": "affected",
        "version": "Magic UI 3.1.1"
      },
      {
        "status": "affected",
        "version": "Magic UI 3.1.0"
      },
      {
        "status": "affected",
        "version": "Magic UI 3.0.0"
      },
      {
        "status": "affected",
        "version": "Magic UI 2.1.1"
      }
    ]
  }
]

References

consumer.huawei.com/en/support/bulletin/2020/12/