CVE-2020-9142Out-of-bounds Write in Huawei Emui

CWE-787Out-of-bounds Write3 documents3 sources
Severity
9.1CRITICALNVD
EPSS
0.2%
top 58.40%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Magic UI
Timeline
PublishedJan 13
Latest updateMay 24

Description

There is a heap base buffer overflow vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability can cause heap overflow and memory overwriting when the system incorrectly processes the update file.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages2 packages

NVDhuawei/emui6 versions+5
NVDhuawei/magic_ui5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-w82f-48jf-c4v4: There is a heap base buffer overflow vulnerability in some Huawei smartphone2022-05-24
CVEList
CVE-2020-9142: There is a heap base buffer overflow vulnerability in some Huawei smartphone2021-01-13
CVE-2020-9142 — Out-of-bounds Write in Huawei Emui | cvebase