Use After Free Vulnerability in Taurus-AL00A Smartphone by Huawei
CVE-2020-9093
5.5MEDIUM
What is CVE-2020-9093?
A use after free vulnerability exists in the Taurus-AL00A smartphone, specifically in versions 10.0.0.1 (C00E1R1P1). The issue arises when a module fails to handle certain messages correctly, allowing an attacker to reference memory that has already been freed. By executing a specially crafted application with normal privileges, an attacker could potentially disrupt normal service operation.
Affected Version(s)
Taurus-AL00A 10.0.0.1(C00E1R1P1)