Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2020-9247

UNKNOWN
Published 2020-12-07T12:49:00
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2020-9247. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Huawei

HONOR 20 PRO

Affected Versions:

unspecified unspecified
Huawei

HUAWEI Mate 20

Affected Versions:

unspecified
Huawei

HUAWEI Mate 20 Pro

Affected Versions:

unspecified unspecified unspecified unspecified unspecified unspecified
Huawei

HUAWEI Mate 20 X

Affected Versions:

unspecified
Huawei

HUAWEI P30

Affected Versions:

9.1.0.272(C635E4R2P2) unspecified unspecified unspecified unspecified unspecified unspecified
Huawei

HUAWEI P30 Pro

Affected Versions:

unspecified
Huawei

Hima-L29C

Affected Versions:

unspecified unspecified unspecified
Huawei

Laya-AL00EP

Affected Versions:

unspecified
Huawei

Princeton-AL10B

Affected Versions:

unspecified
Huawei

Tony-AL00B

Affected Versions:

unspecified
Huawei

Yale-L61A

Affected Versions:

unspecified unspecified
Huawei

Yale-TL00B

Affected Versions:

unspecified
Huawei

YaleP-AL10B

Affected Versions:

unspecified

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-c423-vwh6-449m

Advisory Details

There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.

CVSS Scoring

CVSS Score

7.5

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2020-9247
WEB https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en

Advisory provided by GitHub Security Advisory Database. Published: May 24, 2022, Modified: May 24, 2022

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en
Published: 2020-12-07T12:49:00
Last Modified: 2024-08-04T10:19:20.138Z
Copied to clipboard!