CVE-2020-9082

CWE-200Information Exposure5 documents5 sources
Severity
4.6MEDIUM
EPSS
0.1%
top 73.34%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei Mate 20 FirmwareHuawei Huawei Mate 20
Timeline
PublishedDec 27

Description

There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the attacker should gain the permit to execute commands in ADB mode and then do a series of operation on the phone. Successful exploit could allow the attacker to gain certain information from certain apps locked by Applock. (Vulnerability ID: HWPSIRT-2019-07112) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9082.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:NExploitability: 0.9 | Impact: 2.5

Affected Packages2 packages

NVDhuawei/mate_20_firmware< 10.1.0.160\(c00\)
CVEListV5huawei/huawei_mate_20Versions earlier than 10.1.0.160(C00)

🔴Vulnerability Details

3
CVEList
CVE-2020-9082: There is an information disclosure vulnerability in several smartphones2024-12-27
GHSA
GHSA-jm85-vm3h-hj2v: There is an information disclosure vulnerability in several smartphones2024-12-27
OSV
cairo vulnerabilities2022-05-10
CVE-2020-9082 (MEDIUM CVSS 4.6) | There is an information disclosure | cvebase.io