Denial of Service Vulnerability in Huawei Smartphone Devices
CVE-2020-1880

5.5MEDIUM

Key Information:

Vendor: Huawei
Status: Lion-al00c
Vendor: CVE Published:; 27 April 2020

What is CVE-2020-1880?

Huawei smartphones, specifically the Lion-AL00C model, are vulnerable to a denial of service attack due to inadequate input validation. Attackers can exploit this vulnerability by delivering specially crafted files to the device. When executed, these files may cause the device to malfunction, disrupting normal operations and impacting user experience. It is crucial for users of affected versions to apply the latest security updates to mitigate this risk.

Affected Version(s)

Lion-AL00C Versions earlier than 10.0.0.205(C00E202R7P2)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 27, 2020
Vulnerability Reserved
Nov 29, 2019