Security Advisory - Privilege Escalation Vulnerability in Some Huawei Products

2020-05-2700:00:00

Huawei Technologies

www.huawei.com

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

50.0%

JSON

There is a privilege escalation vulnerability in the ioctl handlers of the Mediatek CMDQ driver. Local attackers can exploit this vulnerability to read and write to the system memory. Successful exploit may lead to local escalation of privilege. (Vulnerability ID: HWPSIRT-2020-03106)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-0069.

Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-01-mtk-en

CPENameOperatorVersion
berkeley-l09lt10.0.0.177
columbia-al10blt10.0.0.178
columbia-l29dlt10.0.0.177
columbia-l29dlt10.0.0.177
columbia-tl00blt10.0.0.178
columbia-tl00dlt10.0.0.178
cornell-al00alt9.1.0.340
cornell-tl10blt9.1.0.340
dura-al00alt1.0.0.190
honor 20 prolt10.0.0.194

Name	Operator	Version
berkeley-l09	lt	10.0.0.177
columbia-al10b	lt	10.0.0.178
columbia-l29d	lt	10.0.0.177
columbia-l29d	lt	10.0.0.177
columbia-tl00b	lt	10.0.0.178
columbia-tl00d	lt	10.0.0.178
cornell-al00a	lt	9.1.0.340
cornell-tl10b	lt	9.1.0.340
dura-al00a	lt	1.0.0.190
honor 20 pro	lt	10.0.0.194