CVE-2020-9125

CWE-125Out-of-bounds Read3 documents3 sources
Severity
6.7MEDIUM
EPSS
0.0%
top 97.51%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Mate 30 Firmware
Timeline
PublishedDec 29
Latest updateMay 24

Description

There is an out-of-bound read vulnerability in huawei smartphone Mate 30 versions earlier than 10.1.0.156 (C00E155R7P2). An attacker with specific permission can exploit this vulnerability by sending crafted packet with specific parameter to the target device. Due to insufficient validation of the parameter, successful exploit can cause the device to behave abnormally.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

NVDhuawei/mate_30_firmware< 10.1.0.156\(c00e155r7p2\)
CVEListV5huawei_mate_30Versions earlier than 10.1.0.156(C00E155R7P2)

🔴Vulnerability Details

2
GHSA
GHSA-v6vx-mcc3-f8vr: There is an out-of-bound read vulnerability in huawei smartphone Mate 30 versions earlier than 102022-05-24
CVEList
CVE-2020-9125: There is an out-of-bound read vulnerability in huawei smartphone Mate 30 versions earlier than 102020-12-29
CVE-2020-9125 (MEDIUM CVSS 6.7) | There is an out-of-bound read vulne | cvebase.io