Vulnerabilites related to huawei - yale-l61a_firmware
Vulnerability from fkie_nvd
Published
2020-09-03 19:15
Modified
2024-11-21 05:40
Summary
Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak.



{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F274713-28DD-423D-9298-F0D05465D654",
                     versionEndExcluding: "10.1.0.230\\(c432e9r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A8A96B1-0C57-4BDE-A4A4-1409A19B8C88",
                     versionEndExcluding: "10.1.0.231\\(c10e3r3p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEB8C3BF-7E85-4BE2-8A45-2A860933613B",
                     versionEndExcluding: "10.1.0.231\\(c185e3r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "793BF36B-E0CB-445D-9891-6508100895E2",
                     versionEndExcluding: "10.1.0.231\\(c636e3r3p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_view_20_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "A91C527D-9227-4DF6-BB0B-318F02F809B1",
                     versionEndExcluding: "10.1.0.212\\(c432e10r3p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_view_20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A55CF4F-8E86-419C-845B-CE60070620A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_view_20_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "14366B9D-852C-4881-9EA0-7CF327D909CF",
                     versionEndExcluding: "10.1.0.213\\(c636e3r4p3\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_view_20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A55CF4F-8E86-419C-845B-CE60070620A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_view_20_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "C3BB4FCB-BDB1-4EFD-BE78-F16D56B63CDD",
                     versionEndExcluding: "10.1.0.214\\(c10e5r4p3\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_view_20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A55CF4F-8E86-419C-845B-CE60070620A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_view_20_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "D30B08C8-FC1C-45AD-90D1-780401879E0F",
                     versionEndExcluding: "10.1.0.214\\(c185e3r3p3\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_view_20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6A55CF4F-8E86-419C-845B-CE60070620A3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:oxfords-an00a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "5121368D-49AB-4786-A7E7-191592073E56",
                     versionEndExcluding: "10.1.0.212\\(c00e210r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:oxfords-an00a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "1F6D6CD6-3D6F-401E-8035-4D9A3F06FFA1",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:princeton-al10b_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "4B4B9600-877F-458C-8E89-40E0B0D21E8A",
                     versionEndExcluding: "10.1.0.160\\(c00e160r2p11\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:princeton-al10b:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D9F930E0-D32C-4D37-8A1D-78D4BFAECF37",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:princeton-al10d_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "B8C262C7-C463-4F74-8F6B-6BF9B4FDCBCF",
                     versionEndExcluding: "10.1.0.160\\(c00e160r2p11\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:princeton-al10d:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "11E6B825-CA55-4BEC-8279-3F33F7CC93EE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:princeton-tl10c_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "860E54AE-BB2C-4ED1-809E-F39DB31BE817",
                     versionEndExcluding: "10.1.0.160\\(c01e160r2p11\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:princeton-tl10c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "35F6A54F-E004-4BE7-A6A6-3E7C300DC498",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:tony-al00b_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "21BE2094-71C2-4C64-860E-67DE745110AD",
                     versionEndExcluding: "10.1.0.160\\(c00e160r2p11\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:tony-al00b:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E14B978-2A3C-4F55-8E3A-BA41AB137C33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-al00a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "4BDC1976-E07B-4464-84DB-EACAE30D97E5",
                     versionEndExcluding: "10.1.0.160\\(c00e160r8p12\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-al00a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "562D05D2-CC9E-4973-9E8D-B40C0ED6C721",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "64B571E5-C93B-42AD-ACEF-DE8155D9993E",
                     versionEndExcluding: "10.1.0.230\\(c432e9r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C9F4FF5-07B8-456E-87C3-DB7C725E20F3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "2221682B-7C40-43F0-8BE4-64872D0388E6",
                     versionEndExcluding: "10.1.0.231\\(c10e3r3p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C9F4FF5-07B8-456E-87C3-DB7C725E20F3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "E706A193-3908-4D3F-9E90-8FAEDA2CF12F",
                     versionEndExcluding: "10.1.0.231\\(c636e3r3p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C9F4FF5-07B8-456E-87C3-DB7C725E20F3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l61a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "F414D697-EA17-4565-9168-47D17427E00E",
                     versionEndExcluding: "10.1.0.225\\(c431e3r1p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l61a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5AB7B562-CDE8-47F2-8537-52AB3640E218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l61a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "DAF4CBFD-6BB8-46B0-85B2-C2C144190AA0",
                     versionEndExcluding: "10.1.0.225\\(c432e3r1p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l61a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5AB7B562-CDE8-47F2-8537-52AB3640E218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak.",
      },
      {
         lang: "es",
         value: "Los teléfonos inteligentes Huawei HONOR 20 PRO Versiones anteriores a 10.1.0.230(C432E9R5P1), Versiones anteriores a 10.1.0.231(C10E3R3P2), Versiones anteriores a 10.1.0.231(C185E3R5P1), Versiones anteriores a 10.1.0.231(C636E3R3P1); Versiones anteriores a 10.1. 0.212(C432E10R3P4), Versiones anteriores a 10.1.0.213(C636E3R4P3), Versiones anteriores a 10.1.0.214(C10E5R4P3), Versiones anteriores a 10.1.0.214(C185E3R3P3); Versiones anteriores a 10.1.0.212(C00E210R5P1); Versiones anteriores a 10.1.0.212(C00E210R5P1). 0.160(C00E160R2P11); Versiones anteriores a 10.1.0.160(C00E160R2P11); Versiones anteriores a 10.1.0.160(C01E160R2P11); Versiones anteriores a 10.1.0.160(C00E160R2P11); Versiones anteriores a 10.1.0.160(C00E160R8P12); Versiones anteriores a 10.1.0.160(C00E160R8P12); Versiones anteriores a 10.1.0.230(C432E9R5P1), Versiones anteriores a 10.1.0.231(C10E3R3P2), Versiones anteriores a 10.1.0.231(C636E3R3P1); Versiones anteriores a 10.1.0.225 (C431E3R1P2), Versiones anteriores a 10.1.0.225(C432E3R1P2), contienen una vulnerabilidad de información. Un módulo presenta un error de diseño que es una falta de control de la entrada. Los atacantes pueden explotar esta vulnerabilidad para obtener información. Esto puede conllevar a una filtrado de información",
      },
   ],
   id: "CVE-2020-9235",
   lastModified: "2024-11-21T05:40:12.693",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "LOW",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "LOCAL",
               authentication: "NONE",
               availabilityImpact: "NONE",
               baseScore: 2.1,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "NONE",
               vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N",
               version: "2.0",
            },
            exploitabilityScore: 3.9,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "NONE",
               baseScore: 5.5,
               baseSeverity: "MEDIUM",
               confidentialityImpact: "HIGH",
               integrityImpact: "NONE",
               privilegesRequired: "LOW",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-09-03T19:15:12.417",
   references: [
      {
         source: "psirt@huawei.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en",
      },
   ],
   sourceIdentifier: "psirt@huawei.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-20",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-12-07 13:15
Modified
2024-11-21 05:40
Summary
There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.



{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F274713-28DD-423D-9298-F0D05465D654",
                     versionEndExcluding: "10.1.0.230\\(c432e9r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "165A8717-DD86-4BC0-AB3C-BD7F92DF68CD",
                     versionEndExcluding: "10.1.0.160\\(c00e160r3p8\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "B5322963-9375-4E4E-8119-895C224003AE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "AAE421D2-9633-43AA-8548-9F2E8A7B724A",
                     versionEndExcluding: "10.1.0.270\\(c432e7r1p5\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2564E28F-EF08-4381-96D8-58BB7C8C0E0C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_x_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "73419613-9F87-4E99-9A8D-D8B6B74F882D",
                     versionEndExcluding: "10.1.0.160\\(c00e160r2p8\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20_x:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5FD3779B-F943-4B7E-BF82-AA4A051D02C8",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_firmware:9.1.0.272\\(c635e4r2p2\\):*:*:*:*:*:*:*",
                     matchCriteriaId: "09F3E84F-6F0A-40BC-91D5-C08A065EE345",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21EE286C-8111-4F59-8CF1-13C68EA76B21",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "4818ECF7-B4D4-4AF4-9DAA-FE08F56B26FC",
                     versionEndExcluding: "10.1.0.160\\(c00e160r2p8\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6DB671DB-CB5B-46E0-B221-722D051184DE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:hima-l29c_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "171D6C45-8616-4D7A-8869-7C69DB877316",
                     versionEndExcluding: "10.1.0.273\\(c185e5r2p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:hima-l29c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "366DC5C5-9276-4921-9ABD-92941B0CEE6D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:laya-al00ep_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "6EBD1414-620B-4367-BF57-9AED468EA81C",
                     versionEndExcluding: "10.1.0.160\\(c786e160r3p8\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:laya-al00ep:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5B3A54AE-DC30-429B-8FB8-BE6EB933E685",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:princeton-al10b_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "4B4B9600-877F-458C-8E89-40E0B0D21E8A",
                     versionEndExcluding: "10.1.0.160\\(c00e160r2p11\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:princeton-al10b:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "D9F930E0-D32C-4D37-8A1D-78D4BFAECF37",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:tony-al00b_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "21BE2094-71C2-4C64-860E-67DE745110AD",
                     versionEndExcluding: "10.1.0.160\\(c00e160r2p11\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:tony-al00b:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "0E14B978-2A3C-4F55-8E3A-BA41AB137C33",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l61a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "DAF4CBFD-6BB8-46B0-85B2-C2C144190AA0",
                     versionEndExcluding: "10.1.0.225\\(c432e3r1p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l61a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5AB7B562-CDE8-47F2-8537-52AB3640E218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-tl00b_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "B4C61685-A7A9-4E2E-BA7B-15A3C32B3F4B",
                     versionEndExcluding: "10.1.0.160\\(c01e160r8p12\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-tl00b:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A4177D27-D234-4BBF-A4D9-1C0DCE5B322C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yalep-al10b_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "A68AFA26-2D0F-4896-AB42-4E3327935F9D",
                     versionEndExcluding: "10.1.0.160\\(c00e160r8p12\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yalep-al10b:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "A7D81385-913B-4A38-A712-41CAE7B78DF4",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A8A96B1-0C57-4BDE-A4A4-1409A19B8C88",
                     versionEndExcluding: "10.1.0.231\\(c10e3r3p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "FD6E8C02-F0E4-456E-A456-93FC2C568DF2",
                     versionEndExcluding: "10.1.0.270\\(c635e3r1p5\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2564E28F-EF08-4381-96D8-58BB7C8C0E0C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "D9AA09E4-2CEF-4482-AA24-00AF0C2E7050",
                     versionEndExcluding: "10.1.0.273\\(c185e7r2p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2564E28F-EF08-4381-96D8-58BB7C8C0E0C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "45D23DA1-BD80-4157-A418-56A8B5DA544D",
                     versionEndExcluding: "10.1.0.273\\(c636e7r2p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2564E28F-EF08-4381-96D8-58BB7C8C0E0C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "07AE032D-2BA2-4717-8280-98182B3A61AB",
                     versionEndExcluding: "10.1.0.277\\(c10e7r2p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2564E28F-EF08-4381-96D8-58BB7C8C0E0C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:mate_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "CC8A76AE-FE0F-4C53-86EC-7663351D4EF9",
                     versionEndExcluding: "10.1.0.277\\(c605e7r1p5\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "2564E28F-EF08-4381-96D8-58BB7C8C0E0C",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "17DCDDE2-A0F8-451D-8B92-029EAD61A6D2",
                     versionEndExcluding: "10.1.0.123\\(c432e22r2p5\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21EE286C-8111-4F59-8CF1-13C68EA76B21",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "67F9D5D0-FA78-4FE6-945F-C92692EE5E15",
                     versionEndExcluding: "10.1.0.126\\(c10e7r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21EE286C-8111-4F59-8CF1-13C68EA76B21",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "7AB36260-4707-4F6C-A5EF-9948BB1C5018",
                     versionEndExcluding: "10.1.0.126\\(c185e4r7p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21EE286C-8111-4F59-8CF1-13C68EA76B21",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "0EC986DB-F634-4E50-9934-AE9406CBA72A",
                     versionEndExcluding: "10.1.0.126\\(c605e19r1p3\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21EE286C-8111-4F59-8CF1-13C68EA76B21",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "AA764DAA-0533-4A69-95A3-00260583800B",
                     versionEndExcluding: "10.1.0.126\\(c636e5r3p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21EE286C-8111-4F59-8CF1-13C68EA76B21",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "A19133CB-485B-4FF9-A103-6A76CB9332F5",
                     versionEndExcluding: "10.1.0.126\\(c636e7r3p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "21EE286C-8111-4F59-8CF1-13C68EA76B21",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:hima-l29c_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "FDF06609-7E15-4F42-A112-9925185F5925",
                     versionEndExcluding: "10.1.0.273\\(c636e5r2p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:hima-l29c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "366DC5C5-9276-4921-9ABD-92941B0CEE6D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:hima-l29c_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "6066AB6A-2C61-4192-95DE-9CF1173F5666",
                     versionEndExcluding: "10.1.0.275\\(c10e4r2p4\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:hima-l29c:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "366DC5C5-9276-4921-9ABD-92941B0CEE6D",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l61a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "3687F033-B75A-497E-B435-87D5D2F2A071",
                     versionEndExcluding: "10.1.0.226\\(c10e3r1p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l61a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5AB7B562-CDE8-47F2-8537-52AB3640E218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.",
      },
      {
         lang: "es",
         value: "Se presenta una vulnerabilidad de desbordamiento del búfer en varios productos de Huawei. El sistema no valida suficientemente ciertos parámetros de configuración que son pasados desde usuario y que causarían un desbordamiento del búfer. El atacante debería engañar al usuario para que instale y ejecute una aplicación maliciosa con un alto privilegio; una explotación con éxito puede provocar una ejecución de código. Los productos afectados incluyen Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B y YaleP- AL10B",
      },
   ],
   id: "CVE-2020-9247",
   lastModified: "2024-11-21T05:40:15.980",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "MEDIUM",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 6.8,
               confidentialityImpact: "PARTIAL",
               integrityImpact: "PARTIAL",
               vectorString: "AV:N/AC:M/Au:N/C:P/I:P/A:P",
               version: "2.0",
            },
            exploitabilityScore: 8.6,
            impactScore: 6.4,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: true,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "LOCAL",
               availabilityImpact: "HIGH",
               baseScore: 7.8,
               baseSeverity: "HIGH",
               confidentialityImpact: "HIGH",
               integrityImpact: "HIGH",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "REQUIRED",
               vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
               version: "3.1",
            },
            exploitabilityScore: 1.8,
            impactScore: 5.9,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-12-07T13:15:11.123",
   references: [
      {
         source: "psirt@huawei.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
      },
   ],
   sourceIdentifier: "psirt@huawei.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "psirt@huawei.com",
         type: "Secondary",
      },
      {
         description: [
            {
               lang: "en",
               value: "CWE-120",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

Vulnerability from fkie_nvd
Published
2020-12-29 18:15
Modified
2024-11-21 05:40
Summary
There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.



{
   configurations: [
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "7F274713-28DD-423D-9298-F0D05465D654",
                     versionEndExcluding: "10.1.0.230\\(c432e9r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "4A8A96B1-0C57-4BDE-A4A4-1409A19B8C88",
                     versionEndExcluding: "10.1.0.231\\(c10e3r3p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "CEB8C3BF-7E85-4BE2-8A45-2A860933613B",
                     versionEndExcluding: "10.1.0.231\\(c185e3r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:honor_20_pro_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "793BF36B-E0CB-445D-9891-6508100895E2",
                     versionEndExcluding: "10.1.0.231\\(c636e3r3p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:honor_20_pro:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "9E2BCA7E-E555-45D1-807A-F53682B0C383",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:princeton-al10d_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "CFA08964-6A81-4471-BD38-C81F03F320F2",
                     versionEndExcluding: "10.1.0.168\\(c00e166r4p11\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:princeton-al10d:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "11E6B825-CA55-4BEC-8279-3F33F7CC93EE",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "64B571E5-C93B-42AD-ACEF-DE8155D9993E",
                     versionEndExcluding: "10.1.0.230\\(c432e9r5p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C9F4FF5-07B8-456E-87C3-DB7C725E20F3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "2221682B-7C40-43F0-8BE4-64872D0388E6",
                     versionEndExcluding: "10.1.0.231\\(c10e3r3p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C9F4FF5-07B8-456E-87C3-DB7C725E20F3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "715DE9EE-7EF2-492A-9D93-392960D8D254",
                     versionEndExcluding: "10.1.0.231\\(c185e2r2p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C9F4FF5-07B8-456E-87C3-DB7C725E20F3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l21a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "E706A193-3908-4D3F-9E90-8FAEDA2CF12F",
                     versionEndExcluding: "10.1.0.231\\(c636e3r3p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l21a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "6C9F4FF5-07B8-456E-87C3-DB7C725E20F3",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l61a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "DAF4CBFD-6BB8-46B0-85B2-C2C144190AA0",
                     versionEndExcluding: "10.1.0.225\\(c432e3r1p2\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l61a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5AB7B562-CDE8-47F2-8537-52AB3640E218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
      {
         nodes: [
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:o:huawei:yale-l61a_firmware:*:*:*:*:*:*:*:*",
                     matchCriteriaId: "3687F033-B75A-497E-B435-87D5D2F2A071",
                     versionEndExcluding: "10.1.0.226\\(c10e3r1p1\\)",
                     vulnerable: true,
                  },
               ],
               negate: false,
               operator: "OR",
            },
            {
               cpeMatch: [
                  {
                     criteria: "cpe:2.3:h:huawei:yale-l61a:-:*:*:*:*:*:*:*",
                     matchCriteriaId: "5AB7B562-CDE8-47F2-8537-52AB3640E218",
                     vulnerable: false,
                  },
               ],
               negate: false,
               operator: "OR",
            },
         ],
         operator: "AND",
      },
   ],
   cveTags: [],
   descriptions: [
      {
         lang: "en",
         value: "There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.",
      },
      {
         lang: "es",
         value: "Se presenta una vulnerabilidad de denegación de servicio en algunos teléfonos inteligentes de Huawei. Debido al procesamiento inapropiado de los mensajes anormales recibidos, unos atacantes remotos pueden explotar esta vulnerabilidad para causar una denegación de servicio (DoS) en el módulo específico",
      },
   ],
   id: "CVE-2020-9223",
   lastModified: "2024-11-21T05:40:11.200",
   metrics: {
      cvssMetricV2: [
         {
            acInsufInfo: false,
            baseSeverity: "MEDIUM",
            cvssData: {
               accessComplexity: "LOW",
               accessVector: "NETWORK",
               authentication: "NONE",
               availabilityImpact: "PARTIAL",
               baseScore: 5,
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:P",
               version: "2.0",
            },
            exploitabilityScore: 10,
            impactScore: 2.9,
            obtainAllPrivilege: false,
            obtainOtherPrivilege: false,
            obtainUserPrivilege: false,
            source: "nvd@nist.gov",
            type: "Primary",
            userInteractionRequired: false,
         },
      ],
      cvssMetricV31: [
         {
            cvssData: {
               attackComplexity: "LOW",
               attackVector: "NETWORK",
               availabilityImpact: "HIGH",
               baseScore: 7.5,
               baseSeverity: "HIGH",
               confidentialityImpact: "NONE",
               integrityImpact: "NONE",
               privilegesRequired: "NONE",
               scope: "UNCHANGED",
               userInteraction: "NONE",
               vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
               version: "3.1",
            },
            exploitabilityScore: 3.9,
            impactScore: 3.6,
            source: "nvd@nist.gov",
            type: "Primary",
         },
      ],
   },
   published: "2020-12-29T18:15:13.447",
   references: [
      {
         source: "psirt@huawei.com",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en",
      },
      {
         source: "af854a3a-2127-422b-91ae-364da2661108",
         tags: [
            "Vendor Advisory",
         ],
         url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en",
      },
   ],
   sourceIdentifier: "psirt@huawei.com",
   vulnStatus: "Modified",
   weaknesses: [
      {
         description: [
            {
               lang: "en",
               value: "NVD-CWE-noinfo",
            },
         ],
         source: "nvd@nist.gov",
         type: "Primary",
      },
   ],
}

cve-2020-9247
Vulnerability from cvelistv5
Published
2020-12-07 12:49
Modified
2024-08-04 10:19
Severity ?
Summary
There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.
Impacted products
Vendor Product Version
Huawei HONOR 20 PRO Version: unspecified   < 10.1.0.230(C432E9R5P1)
Version: unspecified   < 10.1.0.231(C10E3R3P2)
Huawei HUAWEI Mate 20 Version: unspecified   < 10.1.0.160(C00E160R3P8)
Huawei HUAWEI Mate 20 Pro Version: unspecified   < 10.1.0.270(C432E7R1P5)
Version: unspecified   < 10.1.0.270(C635E3R1P5)
Version: unspecified   < 10.1.0.273(C185E7R2P4)
Version: unspecified   < 10.1.0.273(C636E7R2P4)
Version: unspecified   < 10.1.0.277(C10E7R2P4)
Version: unspecified   < 10.1.0.277(C605E7R1P5)
Huawei HUAWEI Mate 20 X Version: unspecified   < 10.1.0.160(C00E160R2P8)
Huawei HUAWEI P30 Version: 9.1.0.272(C635E4R2P2)
Version: unspecified   < 10.1.0.123(C432E22R2P5)
Version: unspecified   < 10.1.0.126(C10E7R5P1)
Version: unspecified   < 10.1.0.126(C185E4R7P1)
Version: unspecified   < 10.1.0.126(C605E19R1P3)
Version: unspecified   < 10.1.0.126(C636E5R3P4)
Version: unspecified   < 10.1.0.126(C636E7R3P4)
Huawei HUAWEI P30 Pro Version: unspecified   < 10.1.0.160(C00E160R2P8)
Huawei Hima-L29C Version: unspecified   < 10.1.0.273(C185E5R2P4)
Version: unspecified   < 10.1.0.273(C636E5R2P4)
Version: unspecified   < 10.1.0.275(C10E4R2P4)
Huawei Laya-AL00EP Version: unspecified   < 10.1.0.160(C786E160R3P8)
Huawei Princeton-AL10B Version: unspecified   < 10.1.0.160(C00E160R2P11)
Huawei Tony-AL00B Version: unspecified   < 10.1.0.160(C00E160R2P11)
Huawei Yale-L61A Version: unspecified   < 10.1.0.225(C432E3R1P2)
Version: unspecified   < 10.1.0.226(C10E3R1P1)
Huawei Yale-TL00B Version: unspecified   < 10.1.0.160(C01E160R8P12)
Huawei YaleP-AL10B Version: unspecified   < 10.1.0.160(C00E160R8P12)
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T10:19:20.138Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "HONOR 20 PRO",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.230(C432E9R5P1)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.231(C10E3R3P2)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "HUAWEI Mate 20",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C00E160R3P8)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "HUAWEI Mate 20 Pro",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.270(C432E7R1P5)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.270(C635E3R1P5)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.273(C185E7R2P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.273(C636E7R2P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.277(C10E7R2P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.277(C605E7R1P5)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "HUAWEI Mate 20 X",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C00E160R2P8)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "HUAWEI P30",
               vendor: "Huawei",
               versions: [
                  {
                     status: "affected",
                     version: "9.1.0.272(C635E4R2P2)",
                  },
                  {
                     lessThan: "10.1.0.123(C432E22R2P5)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.126(C10E7R5P1)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.126(C185E4R7P1)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.126(C605E19R1P3)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.126(C636E5R3P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.126(C636E7R3P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "HUAWEI P30 Pro",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C00E160R2P8)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "Hima-L29C",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.273(C185E5R2P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.273(C636E5R2P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.275(C10E4R2P4)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "Laya-AL00EP",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C786E160R3P8)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "Princeton-AL10B",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C00E160R2P11)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "Tony-AL00B",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C00E160R2P11)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "Yale-L61A",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.225(C432E3R1P2)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
                  {
                     lessThan: "10.1.0.226(C10E3R1P1)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "Yale-TL00B",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C01E160R8P12)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
            {
               product: "YaleP-AL10B",
               vendor: "Huawei",
               versions: [
                  {
                     lessThan: "10.1.0.160(C00E160R8P12)",
                     status: "affected",
                     version: "unspecified",
                     versionType: "custom",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     cweId: "CWE-120",
                     description: "CWE-120 Buffer Overflow",
                     lang: "en",
                     type: "CWE",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-12-07T12:49:00",
            orgId: "25ac1063-e409-4190-8079-24548c77ea2e",
            shortName: "huawei",
         },
         references: [
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
            },
         ],
         source: {
            advisory: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
            discovery: "UNKNOWN",
         },
         x_generator: {
            engine: "Vulnogram 0.0.9",
         },
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "psirt@huawei.com",
               ID: "CVE-2020-9247",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "HONOR 20 PRO",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.230(C432E9R5P1)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.231(C10E3R3P2)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "HUAWEI Mate 20",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C00E160R3P8)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "HUAWEI Mate 20 Pro",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.270(C432E7R1P5)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.270(C635E3R1P5)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.273(C185E7R2P4)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.273(C636E7R2P4)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.277(C10E7R2P4)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.277(C605E7R1P5)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "HUAWEI Mate 20 X",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C00E160R2P8)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "HUAWEI P30",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "=",
                                          version_value: "9.1.0.272(C635E4R2P2)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.123(C432E22R2P5)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.126(C10E7R5P1)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.126(C185E4R7P1)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.126(C605E19R1P3)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.126(C636E5R3P4)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.126(C636E7R3P4)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "HUAWEI P30 Pro",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C00E160R2P8)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Hima-L29C",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.273(C185E5R2P4)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.273(C636E5R2P4)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.275(C10E4R2P4)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Laya-AL00EP",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C786E160R3P8)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Princeton-AL10B",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C00E160R2P11)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Tony-AL00B",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C00E160R2P11)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Yale-L61A",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.225(C432E3R1P2)",
                                       },
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.226(C10E3R1P1)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Yale-TL00B",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C01E160R8P12)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "YaleP-AL10B",
                                 version: {
                                    version_data: [
                                       {
                                          version_affected: "<",
                                          version_value: "10.1.0.160(C00E160R8P12)",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "Huawei",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.",
                  },
               ],
            },
            generator: {
               engine: "Vulnogram 0.0.9",
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "CWE-120 Buffer Overflow",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
                     refsource: "MISC",
                     url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
                  },
               ],
            },
            source: {
               advisory: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
               discovery: "UNKNOWN",
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "25ac1063-e409-4190-8079-24548c77ea2e",
      assignerShortName: "huawei",
      cveId: "CVE-2020-9247",
      datePublished: "2020-12-07T12:49:00",
      dateReserved: "2020-02-18T00:00:00",
      dateUpdated: "2024-08-04T10:19:20.138Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-9223
Vulnerability from cvelistv5
Published
2020-12-29 17:59
Modified
2024-08-04 10:19
Severity ?
Summary
There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.
Impacted products
Vendor Product Version
n/a HONOR 20 PRO Version: Versions earlier than 10.1.0.230(C432E9R5P1)
Version: Versions earlier than 10.1.0.231(C10E3R3P2)
Version: Versions earlier than 10.1.0.231(C185E3R5P1)
Version: Versions earlier than 10.1.0.231(C636E3R3P1)
n/a Princeton-AL10D Version: Versions earlier than 10.1.0.168(C00E166R4P11)
n/a Yale-L21A Version: Versions earlier than 10.1.0.230(C432E9R5P1)
Version: Versions earlier than 10.1.0.231(C10E3R3P2)
Version: Versions earlier than 10.1.0.231(C185E2R2P1)
Version: Versions earlier than 10.1.0.231(C636E3R3P1)
n/a Yale-L61A Version: Versions earlier than 10.1.0.225(C432E3R1P2)
Version: Versions earlier than 10.1.0.226(C10E3R1P1)
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T10:19:20.127Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_CONFIRM",
                     "x_transferred",
                  ],
                  url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "HONOR 20 PRO",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.230(C432E9R5P1)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.231(C10E3R3P2)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.231(C185E3R5P1)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.231(C636E3R3P1)",
                  },
               ],
            },
            {
               product: "Princeton-AL10D",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.168(C00E166R4P11)",
                  },
               ],
            },
            {
               product: "Yale-L21A",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.230(C432E9R5P1)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.231(C10E3R3P2)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.231(C185E2R2P1)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.231(C636E3R3P1)",
                  },
               ],
            },
            {
               product: "Yale-L61A",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.225(C432E3R1P2)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.226(C10E3R1P1)",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Denial of Service",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-12-29T17:59:32",
            orgId: "25ac1063-e409-4190-8079-24548c77ea2e",
            shortName: "huawei",
         },
         references: [
            {
               tags: [
                  "x_refsource_CONFIRM",
               ],
               url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "psirt@huawei.com",
               ID: "CVE-2020-9223",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "HONOR 20 PRO",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Versions earlier than 10.1.0.230(C432E9R5P1)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.231(C10E3R3P2)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.231(C185E3R5P1)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.231(C636E3R3P1)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Princeton-AL10D",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Versions earlier than 10.1.0.168(C00E166R4P11)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Yale-L21A",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Versions earlier than 10.1.0.230(C432E9R5P1)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.231(C10E3R3P2)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.231(C185E2R2P1)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.231(C636E3R3P1)",
                                       },
                                    ],
                                 },
                              },
                              {
                                 product_name: "Yale-L61A",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Versions earlier than 10.1.0.225(C432E3R1P2)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.226(C10E3R1P1)",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Denial of Service",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en",
                     refsource: "CONFIRM",
                     url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "25ac1063-e409-4190-8079-24548c77ea2e",
      assignerShortName: "huawei",
      cveId: "CVE-2020-9223",
      datePublished: "2020-12-29T17:59:32",
      dateReserved: "2020-02-18T00:00:00",
      dateUpdated: "2024-08-04T10:19:20.127Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}

cve-2020-9235
Vulnerability from cvelistv5
Published
2020-09-03 18:04
Modified
2024-08-04 10:19
Severity ?
Summary
Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak.
Impacted products
Vendor Product Version
n/a HONOR 20 PRO;Honor View 20;OxfordS-AN00A;Princeton-AL10B;Princeton-AL10D;Princeton-TL10C;Tony-AL00B;Yale-AL00A;Yale-L21A;Yale-L61A Version: Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1)
Version: Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3)
Version: Versions earlier than 10.1.0.212(C00E210R5P1)
Version: Versions earlier than 10.1.0.160(C00E160R2P11)
Version: Versions earlier than 10.1.0.160(C01E160R2P11)
Version: Versions earlier than 10.1.0.160(C00E160R8P12)
Version: Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1)
Version: Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2)
Show details on NVD website


{
   containers: {
      adp: [
         {
            providerMetadata: {
               dateUpdated: "2024-08-04T10:19:20.123Z",
               orgId: "af854a3a-2127-422b-91ae-364da2661108",
               shortName: "CVE",
            },
            references: [
               {
                  tags: [
                     "x_refsource_MISC",
                     "x_transferred",
                  ],
                  url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en",
               },
            ],
            title: "CVE Program Container",
         },
      ],
      cna: {
         affected: [
            {
               product: "HONOR 20 PRO;Honor View 20;OxfordS-AN00A;Princeton-AL10B;Princeton-AL10D;Princeton-TL10C;Tony-AL00B;Yale-AL00A;Yale-L21A;Yale-L61A",
               vendor: "n/a",
               versions: [
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.212(C00E210R5P1)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.160(C00E160R2P11)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.160(C01E160R2P11)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.160(C00E160R8P12)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1)",
                  },
                  {
                     status: "affected",
                     version: "Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2)",
                  },
               ],
            },
         ],
         descriptions: [
            {
               lang: "en",
               value: "Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak.",
            },
         ],
         problemTypes: [
            {
               descriptions: [
                  {
                     description: "Information Disclosure",
                     lang: "en",
                     type: "text",
                  },
               ],
            },
         ],
         providerMetadata: {
            dateUpdated: "2020-09-03T18:04:26",
            orgId: "25ac1063-e409-4190-8079-24548c77ea2e",
            shortName: "huawei",
         },
         references: [
            {
               tags: [
                  "x_refsource_MISC",
               ],
               url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en",
            },
         ],
         x_legacyV4Record: {
            CVE_data_meta: {
               ASSIGNER: "psirt@huawei.com",
               ID: "CVE-2020-9235",
               STATE: "PUBLIC",
            },
            affects: {
               vendor: {
                  vendor_data: [
                     {
                        product: {
                           product_data: [
                              {
                                 product_name: "HONOR 20 PRO;Honor View 20;OxfordS-AN00A;Princeton-AL10B;Princeton-AL10D;Princeton-TL10C;Tony-AL00B;Yale-AL00A;Yale-L21A;Yale-L61A",
                                 version: {
                                    version_data: [
                                       {
                                          version_value: "Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.212(C00E210R5P1)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.160(C00E160R2P11)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.160(C00E160R2P11)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.160(C01E160R2P11)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.160(C00E160R2P11)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.160(C00E160R8P12)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1)",
                                       },
                                       {
                                          version_value: "Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2)",
                                       },
                                    ],
                                 },
                              },
                           ],
                        },
                        vendor_name: "n/a",
                     },
                  ],
               },
            },
            data_format: "MITRE",
            data_type: "CVE",
            data_version: "4.0",
            description: {
               description_data: [
                  {
                     lang: "eng",
                     value: "Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak.",
                  },
               ],
            },
            problemtype: {
               problemtype_data: [
                  {
                     description: [
                        {
                           lang: "eng",
                           value: "Information Disclosure",
                        },
                     ],
                  },
               ],
            },
            references: {
               reference_data: [
                  {
                     name: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en",
                     refsource: "MISC",
                     url: "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en",
                  },
               ],
            },
         },
      },
   },
   cveMetadata: {
      assignerOrgId: "25ac1063-e409-4190-8079-24548c77ea2e",
      assignerShortName: "huawei",
      cveId: "CVE-2020-9235",
      datePublished: "2020-09-03T18:04:26",
      dateReserved: "2020-02-18T00:00:00",
      dateUpdated: "2024-08-04T10:19:20.123Z",
      state: "PUBLISHED",
   },
   dataType: "CVE_RECORD",
   dataVersion: "5.1",
}