2.4
CVE-2020-1795
- EPSS 0.02%
- Veröffentlicht 20.03.2020 15:15:14
- Zuletzt bearbeitet 21.11.2024 05:11:23
- Quelle psirt@huawei.com
- Teams Watchlist Login
- Unerledigt Login
There is a logic error vulnerability in several smartphones. The software does not properly restrict certain operation when the Digital Balance function is on. Successful exploit could allow the attacker to bypass the Digital Balance limit after a series of operations.Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Huawei ≫ Mate 20 Firmware Version < 10.0.0.188\(c00e74r3p8\)
Huawei ≫ Mate 30 Pro Firmware Version < 10.0.0.203\(c00e202r7p2\)
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.04 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.4 | 0.9 | 1.4 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|