CVE-2020-9247

Name of the Vulnerable Software and Affected Versions Huawei HONOR 20 PRO (affected versions not specified) Huawei Mate 20 (affected versions not specified) Huawei Mate 20 Pro (affected versions not specified) Huawei Mate 20 X (affected versions not specified) Huawei P30 (affected versions not specified) Huawei P30 Pro (affected versions not specified) Huawei Hima-L29C (affected versions not specified) Huawei Laya-AL00EP (affected versions not specified) Huawei Princeton-AL10B (affected versions not specified) Huawei Tony-AL00B (affected versions not specified) Huawei Yale-L61A (affected versions not specified) Huawei Yale-TL00B (affected versions not specified) Huawei YaleP-AL10B (affected versions not specified)

Description The system does not sufficiently validate certain configuration parameters passed from the user, which can cause a buffer overflow. An attacker may trick the user into installing and running a malicious application with high privileges, potentially leading to code execution.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.