PT-2020-20490 · Huawei · Huawei P30 Pro

Published

2020-08-21

Updated

2020-08-25

CVE-2020-9096

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions HUAWEI P30 Pro versions prior to 10.1.0.160(C00E160R2P8)

Description The issue is related to an out-of-bound read vulnerability. It occurs due to a lack of verification when processing certain messages from other modules. Attackers can exploit this by sending malicious messages, which can cause out-of-bound read and compromise normal service.

Recommendations For versions prior to 10.1.0.160(C00E160R2P8), update to version 10.1.0.160(C00E160R2P8) or later to resolve the issue.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2020-9096

Affected Products

Huawei P30 Pro

PT-2020-20490 · Huawei · Huawei P30 Pro

CVE-2020-9096

Weakness Enumeration

Related Identifiers

Affected Products

References · 3