Lucene search

K
huaweiHuawei TechnologiesHUAWEI-SA-20200715-07-SMARTPHONE
HistoryJul 15, 2020 - 12:00 a.m.

Security Advisory - Path Traversal Vulnerability in Several Smartphones

2020-07-1500:00:00
Huawei Technologies
www.huawei.com
27

2.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

9.9%

There is a path traversal vulnerability in several smartphones. The system does not sufficiently validate certain pathname from certain process, successful exploit could allow the attacker write files to a crafted path. (Vulnerability ID: HWPSIRT-2019-10116)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9252

Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-07-smartphone-en

Affected configurations

Vulners
Node
huaweimate_20Range<10.1.0.160
OR
huaweimate_20_proRange<10.1.0.277
OR
huaweimate_20_xRange<10.1.0.135
OR
huaweilaya-al00epRange<10.1.0.160
OR
huaweitony-al00bRange<10.1.0.160
OR
huaweitony-tl00bRange<10.1.0.160

2.3 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

2.1 Low

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

0.0004 Low

EPSS

Percentile

9.9%

Related for HUAWEI-SA-20200715-07-SMARTPHONE