CVE-2020-9239

CWE-20Improper Input ValidationCWE-200Information Exposure3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 90.41%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
13
Huawei Berkeley-l09 FirmwareHuawei Bla-a09 FirmwareHuawei Bla-tl00b Firmware+10 more
Timeline
PublishedSep 11
Latest updateMay 24

Description

Huawei smartphones BLA-A09 versions 8.0.0.123(C212),versions earlier than 8.0.0.123(C567),versions earlier than 8.0.0.123(C797);BLA-TL00B versions earlier than 8.1.0.326(C01);Berkeley-L09 versions earlier than 8.0.0.163(C10),versions earlier than 8.0.0.163(C432),Versions earlier than 8.0.0.163(C636),Versions earlier than 8.0.0.172(C10);Duke-L09 versions Duke-L09C10B187, versions Duke-L09C432B189, versions Duke-L09C636B189;HUAWEI P20 versions earlier than 8.0.1.16(C00);HUAWEI P20 Pro versions ear

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:NExploitability: 1.8 | Impact: 3.6

Affected Packages13 packages

NVDhuawei/toronto-al00a_firmware< toronto-al00ac00b225
NVDhuawei/toronto-al00_firmware< toronto-al00ac00b225
NVDhuawei/toronto-tl10_firmware< toronto-tl10c01b225
NVDhuawei/jimmy-al00a_firmware< jimmy-al00ac00b172
NVDhuawei/duke-l09_firmwareduke-l09c10b187, duke-l09c432b189, duke-l09c636b189+2

🔴Vulnerability Details

2
GHSA
GHSA-f8jg-xpjx-j54w: Huawei smartphones BLA-A09 versions 82022-05-24
CVEList
CVE-2020-9239: Huawei smartphones BLA-A09 versions 82020-09-11
CVE-2020-9239 (MEDIUM CVSS 5.5) | Huawei smartphones BLA-A09 versions | cvebase.io