Privilege escalation

2020-12-2416:15:00

PRIOn knowledge base

www.prio-n.com

0.0004 Low

EPSS

Percentile

12.6%

JSON

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user’s privilege promotion.

CPENameOperatorVersion
mate_10_firmwareeq< 10.0.0.189c185e6r1p3
mate_30_firmwareeq< 10.1.0.156c0e155r7p2
mate_30_pro_firmwareeq< 10.1.0.156c0e156r7p2
p40_firmwareeq< 10.1.0.150sp1c0e150r4p1
p40_pro_firmwareeq< 10.1.0.150sp1c0e150r4p1

Name	Operator	Version
mate_10_firmware	eq	< 10.0.0.189c185e6r1p3
mate_30_firmware	eq	< 10.1.0.156c0e155r7p2
mate_30_pro_firmware	eq	< 10.1.0.156c0e156r7p2
p40_firmware	eq	< 10.1.0.150sp1c0e150r4p1
p40_pro_firmware	eq	< 10.1.0.150sp1c0e150r4p1

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20201202-01-smartphone-en

0.0004 Low

EPSS

Percentile

12.6%

JSON

Related for PRION:CVE-2020-9119