Search

Find a vulnerability

Search criteria

    5 vulnerabilities found for Yale-L61A by Huawei

    VAR-202012-1396

    Vulnerability from variot - Updated: 2024-11-23 22:54

    There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module. plural Huawei There are unspecified vulnerabilities in smartphones.Denial of service (DoS) It may be put into a state

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202012-1396",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "yale-l21a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.230\\(c432e9r5p1\\)"
          },
          {
            "model": "yale-l21a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c10e3r3p2\\)"
          },
          {
            "model": "princeton-al10d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.168\\(c00e166r4p11\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.230\\(c432e9r5p1\\)"
          },
          {
            "model": "yale-l61a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.225\\(c432e3r1p2\\)"
          },
          {
            "model": "yale-l21a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c636e3r3p1\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c10e3r3p2\\)"
          },
          {
            "model": "yale-l61a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.226\\(c10e3r1p1\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c185e3r5p1\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c636e3r3p1\\)"
          },
          {
            "model": "yale-l21a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c185e2r2p1\\)"
          },
          {
            "model": "yale-l21a",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "princeton-al10d",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "honor 20 pro",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "yale-l61a",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "cve": "CVE-2020-9223",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2020-9223",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.5,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 3.9,
                "id": "CVE-2020-9223",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Network",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.5,
                "baseSeverity": "High",
                "confidentialityImpact": "None",
                "exploitabilityScore": null,
                "id": "CVE-2020-9223",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2020-9223",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2020-9223",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202012-1175",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module. plural Huawei There are unspecified vulnerabilities in smartphones.Denial of service (DoS) It may be put into a state",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2020-9223"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          }
        ],
        "trust": 1.62
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2020-9223",
            "trust": 2.4
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175",
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "id": "VAR-202012-1396",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.45833334
      },
      "last_update_date": "2024-11-23T22:54:56.755000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "huawei-sa-20201216-03-smartphone",
            "trust": 0.8,
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en"
          },
          {
            "title": "Multiple  Huawei Product security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=137332"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          },
          {
            "problemtype": "Lack of information (CWE-noinfo) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.6,
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-9223"
          },
          {
            "trust": 0.6,
            "url": "https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20201216-03-smartphone-cn"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-09-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "date": "2020-12-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          },
          {
            "date": "2020-12-29T18:15:13.447000",
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-09-01T05:40:00",
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          },
          {
            "date": "2022-03-10T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          },
          {
            "date": "2024-11-21T05:40:11.200000",
            "db": "NVD",
            "id": "CVE-2020-9223"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "plural \u00a0Huawei\u00a0 Vulnerability in smartphones",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014833"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202012-1175"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202012-1394

    Vulnerability from variot - Updated: 2024-11-23 22:29

    There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B. plural Huawei The product contains a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202012-1394",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "yale-tl00b",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c01e160r8p12\\)"
          },
          {
            "model": "mate 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.273\\(c636e7r2p4\\)"
          },
          {
            "model": "p30",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.126\\(c10e7r5p1\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c10e3r3p2\\)"
          },
          {
            "model": "yale-l61a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.226\\(c10e3r1p1\\)"
          },
          {
            "model": "mate 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.270\\(c635e3r1p5\\)"
          },
          {
            "model": "p30",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.126\\(c636e7r3p4\\)"
          },
          {
            "model": "mate 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.273\\(c185e7r2p4\\)"
          },
          {
            "model": "yalep-al10b",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r8p12\\)"
          },
          {
            "model": "princeton-al10b",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r2p11\\)"
          },
          {
            "model": "mate 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.270\\(c432e7r1p5\\)"
          },
          {
            "model": "p30",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.126\\(c636e5r3p4\\)"
          },
          {
            "model": "hima-l29c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.275\\(c10e4r2p4\\)"
          },
          {
            "model": "p30",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.126\\(c605e19r1p3\\)"
          },
          {
            "model": "mate 20",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r3p8\\)"
          },
          {
            "model": "laya-al00ep",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c786e160r3p8\\)"
          },
          {
            "model": "mate 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.277\\(c10e7r2p4\\)"
          },
          {
            "model": "p30",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "9.1.0.272\\(c635e4r2p2\\)"
          },
          {
            "model": "mate 20 x",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r2p8\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.230\\(c432e9r5p1\\)"
          },
          {
            "model": "tony-al00b",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r2p11\\)"
          },
          {
            "model": "mate 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.277\\(c605e7r1p5\\)"
          },
          {
            "model": "p30",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.123\\(c432e22r2p5\\)"
          },
          {
            "model": "p30",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.126\\(c185e4r7p1\\)"
          },
          {
            "model": "hima-l29c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.273\\(c185e5r2p4\\)"
          },
          {
            "model": "yale-l61a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.225\\(c432e3r1p2\\)"
          },
          {
            "model": "hima-l29c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.273\\(c636e5r2p4\\)"
          },
          {
            "model": "p30 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r2p8\\)"
          },
          {
            "model": "p30 pro",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "tony-al00b",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "princeton-al10b",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "p30",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "honor 20 pro",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "laya-al00ep",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "mate 20",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "hima-l29c",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "mate 20 pro",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "mate 20 x",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "cve": "CVE-2020-9247",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.8,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 8.6,
                "id": "CVE-2020-9247",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "HIGH",
                "baseScore": 7.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2020-9247",
                "impactScore": 5.9,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "High",
                "baseScore": 7.8,
                "baseSeverity": "High",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2020-9247",
                "impactScore": null,
                "integrityImpact": "High",
                "privilegesRequired": "None",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "Required",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2020-9247",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "NVD",
                "id": "CVE-2020-9247",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202007-1901",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B. plural Huawei The product contains a classic buffer overflow vulnerability.Information is obtained, information is tampered with, and service is disrupted (DoS) It may be put into a state",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2020-9247"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          }
        ],
        "trust": 1.62
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2020-9247",
            "trust": 2.4
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901",
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "id": "VAR-202012-1394",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.49300468750000004
      },
      "last_update_date": "2024-11-23T22:29:21.018000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "huawei-sa-20200729-03-smartphone",
            "trust": 0.8,
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
          },
          {
            "title": "Repair measures for Huawei buffer error vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=129041"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-120",
            "trust": 1.0
          },
          {
            "problemtype": "Classic buffer overflow (CWE-120) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.6,
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-9247"
          },
          {
            "trust": 0.6,
            "url": "https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200729-03-smartphone-cn"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-03T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "date": "2020-07-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          },
          {
            "date": "2020-12-07T13:15:11.123000",
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2021-08-03T04:39:00",
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          },
          {
            "date": "2021-08-16T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          },
          {
            "date": "2024-11-21T05:40:15.980000",
            "db": "NVD",
            "id": "CVE-2020-9247"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "plural \u00a0Huawei\u00a0 Classic buffer overflow vulnerability in the product",
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-014149"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202007-1901"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-202009-1317

    Vulnerability from variot - Updated: 2024-11-23 22:11

    Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak. Huawei smartphone HONOR 20 PRO Contains an information disclosure vulnerability.Information may be obtained. Huawei Honor V20 is a smart phone of China's Huawei (Huawei) company

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-202009-1317",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "honor pro \u003c10.1.0.231",
            "scope": "eq",
            "trust": 1.8,
            "vendor": "huawei",
            "version": "20"
          },
          {
            "model": "honor pro \u003c10.1.0.160",
            "scope": "eq",
            "trust": 1.8,
            "vendor": "huawei",
            "version": "20"
          },
          {
            "model": "honor pro \u003c10.1.0.212",
            "scope": "eq",
            "trust": 1.2,
            "vendor": "huawei",
            "version": "20"
          },
          {
            "model": "honor pro \u003c10.1.0.214",
            "scope": "eq",
            "trust": 1.2,
            "vendor": "huawei",
            "version": "20"
          },
          {
            "model": "honor pro \u003c10.1.0.225",
            "scope": "eq",
            "trust": 1.2,
            "vendor": "huawei",
            "version": "20"
          },
          {
            "model": "honor view 20",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.213\\(c636e3r4p3\\)"
          },
          {
            "model": "yale-l21a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c10e3r3p2\\)"
          },
          {
            "model": "yale-l21a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c636e3r3p1\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c10e3r3p2\\)"
          },
          {
            "model": "yale-al00a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r8p12\\)"
          },
          {
            "model": "yale-l61a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.225\\(c431e3r1p2\\)"
          },
          {
            "model": "honor view 20",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.212\\(c432e10r3p4\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c636e3r3p1\\)"
          },
          {
            "model": "princeton-al10b",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r2p11\\)"
          },
          {
            "model": "princeton-tl10c",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c01e160r2p11\\)"
          },
          {
            "model": "honor view 20",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.214\\(c10e5r4p3\\)"
          },
          {
            "model": "yale-l21a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.230\\(c432e9r5p1\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.230\\(c432e9r5p1\\)"
          },
          {
            "model": "tony-al00b",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r2p11\\)"
          },
          {
            "model": "princeton-al10d",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.160\\(c00e160r2p11\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.231\\(c185e3r5p1\\)"
          },
          {
            "model": "oxfords-an00a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.212\\(c00e210r5p1\\)"
          },
          {
            "model": "yale-l61a",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.225\\(c432e3r1p2\\)"
          },
          {
            "model": "honor view 20",
            "scope": "lt",
            "trust": 1.0,
            "vendor": "huawei",
            "version": "10.1.0.214\\(c185e3r3p3\\)"
          },
          {
            "model": "honor 20 pro",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "honor view 20",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "oxfords-an00a",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "princeton-al10b",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "princeton-al10d",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "princeton-tl10c",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "tony-al00b",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "yale-al00a",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "yale-l21a",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "yale-l61a",
            "scope": null,
            "trust": 0.8,
            "vendor": "huawei",
            "version": null
          },
          {
            "model": "honor pro \u003c10.1.0.230",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "huawei",
            "version": "20"
          },
          {
            "model": "honor pro \u003c10.1.0.213",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "huawei",
            "version": "20"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "cve": "CVE-2020-9235",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 2.1,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 3.9,
                "id": "CVE-2020-9235",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "LOW",
                "trust": 1.8,
                "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "LOCAL",
                "authentication": "NONE",
                "author": "CNVD",
                "availabilityImpact": "NONE",
                "baseScore": 2.1,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 3.9,
                "id": "CNVD-2020-52402",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "LOW",
                "trust": 0.6,
                "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "exploitabilityScore": 1.8,
                "id": "CVE-2020-9235",
                "impactScore": 3.6,
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.1"
              },
              {
                "attackComplexity": "Low",
                "attackVector": "Local",
                "author": "NVD",
                "availabilityImpact": "None",
                "baseScore": 5.5,
                "baseSeverity": "Medium",
                "confidentialityImpact": "High",
                "exploitabilityScore": null,
                "id": "CVE-2020-9235",
                "impactScore": null,
                "integrityImpact": "None",
                "privilegesRequired": "Low",
                "scope": "Unchanged",
                "trust": 0.8,
                "userInteraction": "None",
                "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.0"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2020-9235",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2020-9235",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNVD",
                "id": "CNVD-2020-52402",
                "trust": 0.6,
                "value": "LOW"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-202009-252",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak. Huawei smartphone HONOR 20 PRO Contains an information disclosure vulnerability.Information may be obtained. Huawei Honor V20 is a smart phone of China\u0027s Huawei (Huawei) company",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2020-9235"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          }
        ],
        "trust": 2.16
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2020-9235",
            "trust": 3.0
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696",
            "trust": 0.8
          },
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252",
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "id": "VAR-202009-1317",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          }
        ],
        "trust": 1.0648148133333333
      },
      "iot_taxonomy": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "category": [
              "IoT"
            ],
            "sub_category": null,
            "trust": 0.6
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          }
        ]
      },
      "last_update_date": "2024-11-23T22:11:19.159000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "huawei-sa-20200902-07-smartphone",
            "trust": 0.8,
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en"
          },
          {
            "title": "Patch for Huawei Honor 20 PRO information disclosure vulnerability",
            "trust": 0.6,
            "url": "https://www.cnvd.org.cn/patchInfo/show/234328"
          },
          {
            "title": "HUAWEI HONOR 20 PRO Security vulnerabilities",
            "trust": 0.6,
            "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=127436"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-20",
            "trust": 1.0
          },
          {
            "problemtype": "information leak (CWE-200) [NVD Evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.2,
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200902-07-smartphone-en"
          },
          {
            "trust": 1.4,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2020-9235"
          }
        ],
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2020-09-17T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "date": "2021-02-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "date": "2020-09-03T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          },
          {
            "date": "2020-09-03T19:15:12.417000",
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2020-09-17T00:00:00",
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "date": "2021-02-01T08:35:00",
            "db": "JVNDB",
            "id": "JVNDB-2020-010696"
          },
          {
            "date": "2020-10-22T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          },
          {
            "date": "2024-11-21T05:40:12.693000",
            "db": "NVD",
            "id": "CVE-2020-9235"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "local",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Huawei Honor 20 PRO information disclosure vulnerability",
        "sources": [
          {
            "db": "CNVD",
            "id": "CNVD-2020-52402"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          }
        ],
        "trust": 1.2
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "information disclosure",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-202009-252"
          }
        ],
        "trust": 0.6
      }
    }

    CVE-2020-9247 (GCVE-0-2020-9247)

    Vulnerability from nvd – Published: 2020-12-07 12:49 – Updated: 2024-08-04 10:19
    VLAI
    Summary
    There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Huawei HONOR 20 PRO Affected: unspecified , < 10.1.0.230(C432E9R5P1) (custom)
    Affected: unspecified , < 10.1.0.231(C10E3R3P2) (custom)
    Create a notification for this product.
    Huawei HUAWEI Mate 20 Affected: unspecified , < 10.1.0.160(C00E160R3P8) (custom)
    Create a notification for this product.
    Huawei HUAWEI Mate 20 Pro Affected: unspecified , < 10.1.0.270(C432E7R1P5) (custom)
    Affected: unspecified , < 10.1.0.270(C635E3R1P5) (custom)
    Affected: unspecified , < 10.1.0.273(C185E7R2P4) (custom)
    Affected: unspecified , < 10.1.0.273(C636E7R2P4) (custom)
    Affected: unspecified , < 10.1.0.277(C10E7R2P4) (custom)
    Affected: unspecified , < 10.1.0.277(C605E7R1P5) (custom)
    Create a notification for this product.
    Huawei HUAWEI Mate 20 X Affected: unspecified , < 10.1.0.160(C00E160R2P8) (custom)
    Create a notification for this product.
    Huawei HUAWEI P30 Affected: 9.1.0.272(C635E4R2P2)
    Affected: unspecified , < 10.1.0.123(C432E22R2P5) (custom)
    Affected: unspecified , < 10.1.0.126(C10E7R5P1) (custom)
    Affected: unspecified , < 10.1.0.126(C185E4R7P1) (custom)
    Affected: unspecified , < 10.1.0.126(C605E19R1P3) (custom)
    Affected: unspecified , < 10.1.0.126(C636E5R3P4) (custom)
    Affected: unspecified , < 10.1.0.126(C636E7R3P4) (custom)
    Create a notification for this product.
    Huawei HUAWEI P30 Pro Affected: unspecified , < 10.1.0.160(C00E160R2P8) (custom)
    Create a notification for this product.
    Huawei Hima-L29C Affected: unspecified , < 10.1.0.273(C185E5R2P4) (custom)
    Affected: unspecified , < 10.1.0.273(C636E5R2P4) (custom)
    Affected: unspecified , < 10.1.0.275(C10E4R2P4) (custom)
    Create a notification for this product.
    Huawei Laya-AL00EP Affected: unspecified , < 10.1.0.160(C786E160R3P8) (custom)
    Create a notification for this product.
    Huawei Princeton-AL10B Affected: unspecified , < 10.1.0.160(C00E160R2P11) (custom)
    Create a notification for this product.
    Huawei Tony-AL00B Affected: unspecified , < 10.1.0.160(C00E160R2P11) (custom)
    Create a notification for this product.
    Huawei Yale-L61A Affected: unspecified , < 10.1.0.225(C432E3R1P2) (custom)
    Affected: unspecified , < 10.1.0.226(C10E3R1P1) (custom)
    Create a notification for this product.
    Huawei Yale-TL00B Affected: unspecified , < 10.1.0.160(C01E160R8P12) (custom)
    Create a notification for this product.
    Huawei YaleP-AL10B Affected: unspecified , < 10.1.0.160(C00E160R8P12) (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T10:19:20.138Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HONOR 20 PRO",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.230(C432E9R5P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.231(C10E3R3P2)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI Mate 20",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R3P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI Mate 20 Pro",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.270(C432E7R1P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.270(C635E3R1P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.273(C185E7R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.273(C636E7R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.277(C10E7R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.277(C605E7R1P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI Mate 20 X",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI P30",
              "vendor": "Huawei",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.1.0.272(C635E4R2P2)"
                },
                {
                  "lessThan": "10.1.0.123(C432E22R2P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C10E7R5P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C185E4R7P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C605E19R1P3)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C636E5R3P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C636E7R3P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI P30 Pro",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Hima-L29C",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.273(C185E5R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.273(C636E5R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.275(C10E4R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Laya-AL00EP",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C786E160R3P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Princeton-AL10B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P11)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Tony-AL00B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P11)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Yale-L61A",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.225(C432E3R1P2)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.226(C10E3R1P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Yale-TL00B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C01E160R8P12)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "YaleP-AL10B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R8P12)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-120",
                  "description": "CWE-120 Buffer Overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-07T12:49:00.000Z",
            "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
            "shortName": "huawei"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
            }
          ],
          "source": {
            "advisory": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@huawei.com",
              "ID": "CVE-2020-9247",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HONOR 20 PRO",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.230(C432E9R5P1)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.231(C10E3R3P2)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI Mate 20",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R3P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI Mate 20 Pro",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.270(C432E7R1P5)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.270(C635E3R1P5)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C185E7R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C636E7R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.277(C10E7R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.277(C605E7R1P5)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI Mate 20 X",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI P30",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "9.1.0.272(C635E4R2P2)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.123(C432E22R2P5)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C10E7R5P1)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C185E4R7P1)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C605E19R1P3)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C636E5R3P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C636E7R3P4)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI P30 Pro",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Hima-L29C",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C185E5R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C636E5R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.275(C10E4R2P4)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Laya-AL00EP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C786E160R3P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Princeton-AL10B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P11)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Tony-AL00B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P11)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Yale-L61A",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.225(C432E3R1P2)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.226(C10E3R1P1)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Yale-TL00B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C01E160R8P12)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "YaleP-AL10B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R8P12)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Huawei"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-120 Buffer Overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
                  "refsource": "MISC",
                  "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
                }
              ]
            },
            "source": {
              "advisory": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "assignerShortName": "huawei",
        "cveId": "CVE-2020-9247",
        "datePublished": "2020-12-07T12:49:00.000Z",
        "dateReserved": "2020-02-18T00:00:00.000Z",
        "dateUpdated": "2024-08-04T10:19:20.138Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2020-9247 (GCVE-0-2020-9247)

    Vulnerability from cvelistv5 – Published: 2020-12-07 12:49 – Updated: 2024-08-04 10:19
    VLAI
    Summary
    There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Vendor Product Version
    Huawei HONOR 20 PRO Affected: unspecified , < 10.1.0.230(C432E9R5P1) (custom)
    Affected: unspecified , < 10.1.0.231(C10E3R3P2) (custom)
    Create a notification for this product.
    Huawei HUAWEI Mate 20 Affected: unspecified , < 10.1.0.160(C00E160R3P8) (custom)
    Create a notification for this product.
    Huawei HUAWEI Mate 20 Pro Affected: unspecified , < 10.1.0.270(C432E7R1P5) (custom)
    Affected: unspecified , < 10.1.0.270(C635E3R1P5) (custom)
    Affected: unspecified , < 10.1.0.273(C185E7R2P4) (custom)
    Affected: unspecified , < 10.1.0.273(C636E7R2P4) (custom)
    Affected: unspecified , < 10.1.0.277(C10E7R2P4) (custom)
    Affected: unspecified , < 10.1.0.277(C605E7R1P5) (custom)
    Create a notification for this product.
    Huawei HUAWEI Mate 20 X Affected: unspecified , < 10.1.0.160(C00E160R2P8) (custom)
    Create a notification for this product.
    Huawei HUAWEI P30 Affected: 9.1.0.272(C635E4R2P2)
    Affected: unspecified , < 10.1.0.123(C432E22R2P5) (custom)
    Affected: unspecified , < 10.1.0.126(C10E7R5P1) (custom)
    Affected: unspecified , < 10.1.0.126(C185E4R7P1) (custom)
    Affected: unspecified , < 10.1.0.126(C605E19R1P3) (custom)
    Affected: unspecified , < 10.1.0.126(C636E5R3P4) (custom)
    Affected: unspecified , < 10.1.0.126(C636E7R3P4) (custom)
    Create a notification for this product.
    Huawei HUAWEI P30 Pro Affected: unspecified , < 10.1.0.160(C00E160R2P8) (custom)
    Create a notification for this product.
    Huawei Hima-L29C Affected: unspecified , < 10.1.0.273(C185E5R2P4) (custom)
    Affected: unspecified , < 10.1.0.273(C636E5R2P4) (custom)
    Affected: unspecified , < 10.1.0.275(C10E4R2P4) (custom)
    Create a notification for this product.
    Huawei Laya-AL00EP Affected: unspecified , < 10.1.0.160(C786E160R3P8) (custom)
    Create a notification for this product.
    Huawei Princeton-AL10B Affected: unspecified , < 10.1.0.160(C00E160R2P11) (custom)
    Create a notification for this product.
    Huawei Tony-AL00B Affected: unspecified , < 10.1.0.160(C00E160R2P11) (custom)
    Create a notification for this product.
    Huawei Yale-L61A Affected: unspecified , < 10.1.0.225(C432E3R1P2) (custom)
    Affected: unspecified , < 10.1.0.226(C10E3R1P1) (custom)
    Create a notification for this product.
    Huawei Yale-TL00B Affected: unspecified , < 10.1.0.160(C01E160R8P12) (custom)
    Create a notification for this product.
    Huawei YaleP-AL10B Affected: unspecified , < 10.1.0.160(C00E160R8P12) (custom)
    Create a notification for this product.
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-04T10:19:20.138Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "HONOR 20 PRO",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.230(C432E9R5P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.231(C10E3R3P2)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI Mate 20",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R3P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI Mate 20 Pro",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.270(C432E7R1P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.270(C635E3R1P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.273(C185E7R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.273(C636E7R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.277(C10E7R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.277(C605E7R1P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI Mate 20 X",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI P30",
              "vendor": "Huawei",
              "versions": [
                {
                  "status": "affected",
                  "version": "9.1.0.272(C635E4R2P2)"
                },
                {
                  "lessThan": "10.1.0.123(C432E22R2P5)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C10E7R5P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C185E4R7P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C605E19R1P3)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C636E5R3P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.126(C636E7R3P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "HUAWEI P30 Pro",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Hima-L29C",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.273(C185E5R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.273(C636E5R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.275(C10E4R2P4)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Laya-AL00EP",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C786E160R3P8)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Princeton-AL10B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P11)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Tony-AL00B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R2P11)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Yale-L61A",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.225(C432E3R1P2)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                },
                {
                  "lessThan": "10.1.0.226(C10E3R1P1)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "Yale-TL00B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C01E160R8P12)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            },
            {
              "product": "YaleP-AL10B",
              "vendor": "Huawei",
              "versions": [
                {
                  "lessThan": "10.1.0.160(C00E160R8P12)",
                  "status": "affected",
                  "version": "unspecified",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-120",
                  "description": "CWE-120 Buffer Overflow",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2020-12-07T12:49:00.000Z",
            "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
            "shortName": "huawei"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
            }
          ],
          "source": {
            "advisory": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
            "discovery": "UNKNOWN"
          },
          "x_generator": {
            "engine": "Vulnogram 0.0.9"
          },
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "psirt@huawei.com",
              "ID": "CVE-2020-9247",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "HONOR 20 PRO",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.230(C432E9R5P1)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.231(C10E3R3P2)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI Mate 20",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R3P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI Mate 20 Pro",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.270(C432E7R1P5)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.270(C635E3R1P5)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C185E7R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C636E7R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.277(C10E7R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.277(C605E7R1P5)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI Mate 20 X",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI P30",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "=",
                                "version_value": "9.1.0.272(C635E4R2P2)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.123(C432E22R2P5)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C10E7R5P1)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C185E4R7P1)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C605E19R1P3)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C636E5R3P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.126(C636E7R3P4)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "HUAWEI P30 Pro",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Hima-L29C",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C185E5R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.273(C636E5R2P4)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.275(C10E4R2P4)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Laya-AL00EP",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C786E160R3P8)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Princeton-AL10B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P11)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Tony-AL00B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R2P11)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Yale-L61A",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.225(C432E3R1P2)"
                              },
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.226(C10E3R1P1)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "Yale-TL00B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C01E160R8P12)"
                              }
                            ]
                          }
                        },
                        {
                          "product_name": "YaleP-AL10B",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_value": "10.1.0.160(C00E160R8P12)"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Huawei"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B."
                }
              ]
            },
            "generator": {
              "engine": "Vulnogram 0.0.9"
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-120 Buffer Overflow"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
                  "refsource": "MISC",
                  "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en"
                }
              ]
            },
            "source": {
              "advisory": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-03-smartphone-en",
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "assignerShortName": "huawei",
        "cveId": "CVE-2020-9247",
        "datePublished": "2020-12-07T12:49:00.000Z",
        "dateReserved": "2020-02-18T00:00:00.000Z",
        "dateUpdated": "2024-08-04T10:19:20.138Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }