CVE-2020-9119
Last modified
CVE-2020-9119 is a medium-severity vulnerability rated 6.2/10 on the CVSS scale. There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.. EPSS estimates a 0.22% chance of exploitation in the next 30 days.
Description
There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.
Metrics
CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Mate 10 Firmware | < 10.0.0.189\(c185e6r1p3\) |
| Huawei | Mate 30 Firmware | < 10.1.0.156\(c00e155r7p2\) |
| Huawei | Mate 30 Pro Firmware | < 10.1.0.156\(c00e156r7p2\) |
| Huawei | P40 Firmware | < 10.1.0.150\(sp1c00e150r4p1\) |
| Huawei | P40 Pro Firmware | < 10.1.0.150\(sp1c00e150r4p1\) |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2020-9119?
How severe is CVE-2020-9119?
How do I fix CVE-2020-9119?
Are you affected by CVE-2020-9119?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST