6.2

CVE-2020-9119

EPSS 0.03%
Published 24.12.2020 16:15:15
Last modified 21.11.2024 05:40:05
Source psirt@huawei.com
Teams watchlist Login
Open Login

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.

Affected products Warnungen 0 Metrics 3 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Huawei ≫ Mate 10 Firmware Version < 10.0.0.189\(c185e6r1p3\)

Huawei ≫ Mate 10 Version-

Huawei ≫ Mate 30 Firmware Version < 10.1.0.156\(c00e155r7p2\)

Huawei ≫ Mate 30 Version-

Huawei ≫ Mate 30 Pro Firmware Version < 10.1.0.156\(c00e156r7p2\)

Huawei ≫ Mate 30 Pro Version-

Huawei ≫ P40 Firmware Version < 10.1.0.150\(sp1c00e150r4p1\)

Huawei ≫ P40 Version-

Huawei ≫ P40 Pro Firmware Version < 10.1.0.150\(sp1c00e150r4p1\)

Huawei ≫ P40 Pro Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.051

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.2	0.3	5.9	CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201202-01-smartphone-en

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2020-9119

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-9119

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-9119

EUVD