Huawei Mate 20 Pro vulnerabilities
6 known vulnerabilities affecting huawei/huawei_mate_20_pro.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM3LOW1
Vulnerabilities
Page 1 of 1
CVE-2020-9080HIGHCVSS 7.8v10.1.0.135(C01E135R2P8)2024-12-27
CVE-2020-9080 [HIGH] CWE-269 CVE-2020-9080: There is an improper privilege management vulnerability in Huawei smart phone product. A local, auth
There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specific input to exploit this vulnerability. Successful exploitation may lead to local privilege escalation. (Vulnerability ID: HWPSIRT-2020-05272)
This vulnerability has been assigned a Common Vulnerabilities and Exposu
cvelistv5nvd
CVE-2020-9250LOWCVSS 3.3vVersions earlier than 10.1.0.160(C00E160R3P8)2024-12-20
CVE-2020-9250 [LOW] CWE-287 CVE-2020-9250: There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated
There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated, local attacker can crafts software package to exploit this vulnerability. Due to insufficient verification, successful exploitation may impact the service. (Vulnerability ID: HWPSIRT-2019-12302)
This vulnerability has been assigned a Common Vulnerabilit
cvelistv5nvd
CVE-2020-9247HIGHCVSS 7.8≥ unspecified, < 10.1.0.270(C432E7R1P5)≥ unspecified, < 10.1.0.270(C635E3R1P5)+4 more2020-12-07
CVE-2020-9247 [HIGH] CWE-120 CVE-2020-9247: There is a buffer overflow vulnerability in several Huawei products. The system does not sufficientl
There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code executio
cvelistv5nvd
CVE-2019-5303MEDIUMCVSS 5.3vVersions earlier than 9.1.0.310(C185E10R2P1)2020-04-27
CVE-2019-5303 [MEDIUM] CWE-20 CVE-2019-5303: There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send spe
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different
cvelistv5nvd
CVE-2019-5302MEDIUMCVSS 5.3vVersions earlier than 9.1.0.310(C185E10R2P1)2020-04-27
CVE-2019-5302 [MEDIUM] CWE-20 CVE-2019-5302: There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send spe
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different
cvelistv5nvd
CVE-2020-1786MEDIUMCVSS 4.6vVersions earlier than 10.0.0.175(C00E69R3P8)2020-01-09
CVE-2020-1786 [MEDIUM] CWE-287 CVE-2020-1786: HUAWEI Mate 20 Pro smartphones versions earlier than 10.0.0.175(C00E69R3P8) have an improper authent
HUAWEI Mate 20 Pro smartphones versions earlier than 10.0.0.175(C00E69R3P8) have an improper authentication vulnerability. The software does not sufficiently validate the name of apk file in a special condition which could allow an attacker to forge a crafted application as a normal one. Successful exploit could allow the attacker to bypass digital ba
cvelistv5nvd