CVE-2020-9113

8HIGH

Key Information:

Vendor: Huawei
Status: Huawei Mate 20
Vendor: CVE Published:; 19 October 2020

Summary

HUAWEI Mate 20 versions earlier than 10.0.0.188(C00E74R3P8) have a buffer overflow vulnerability in the Bluetooth module. Due to insufficient input validation, an unauthenticated attacker may craft Bluetooth messages after successful paring, causing buffer overflow. Successful exploit may cause code execution.

Affected Version(s)

HUAWEI Mate 20 Versions earlier than 10.0.0.188(C00E74R3P8)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_MISC

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Oct 19, 2020
Vulnerability Reserved
Feb 18, 2020