CVE-2020-9089
published 2024-12-27CVE-2020-9089: There is an information vulnerability in Huawei smartphones. A function in a module can be called without verifying the caller's access. Attackers with user…
low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
There is an information vulnerability in Huawei smartphones. A function in a module can be called without verifying the caller's access. Attackers with user access can exploit this vulnerability to obtain some information. This can lead to information leak. (Vulnerability ID: HWPSIRT-2019-12141)
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9089.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | huawei_p30_pro | — | — |
| huawei | huawei_p30_pro | — | — |
| huawei | huawei_p30_pro | — | — |
| huawei | huawei_p30_pro | — | — |
| huawei | p30_pro_firmware | < 10.1.0.120\(c431e19r2p5\) | 10.1.0.120\(c431e19r2p5\) |
| huawei | p30_pro_firmware | < 10.1.0.120\(c432e19r2p5\) | 10.1.0.120\(c432e19r2p5\) |
| huawei | p30_pro_firmware | < 10.1.0.126\(c10e11r5p1\) | 10.1.0.126\(c10e11r5p1\) |
| huawei | p30_pro_firmware | < 10.1.0.126\(c461e11r3p1\) | 10.1.0.126\(c461e11r3p1\) |