CVE-2020-9080

216.73.217.22

· Published 27/12/2024 10:15 · Modified 10/01/2025 20:36

Labels: CVE-2020-9080 2024-12-27 CVE-2020-9080 CWE-269 NVD-CWE-noinfo [email protected]

Essential information

Published: 27/12/2024 10:15
Modified: 10/01/2025 20:36
Author: —
Creator: —
CVSS: 7.8 HIGH (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS metrics

Description

There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specific input to exploit this vulnerability. Successful exploitation may lead to local privilege escalation. (Vulnerability ID: HWPSIRT-2020-05272) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9080.

NVD status

Status: Analyzed — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
huawei / mate 20 pro firmware	`cpe:2.3:o:huawei:mate_20_pro_firmware:10.1.0.135\(c01e135r2p8\):::::::*`
huawei / mate 20 pro	`cpe:2.3:h:huawei:mate_20_pro:-:::::::*`
huawei / mate 20 pro \(ud\) firmware	`cpe:2.3:o:huawei:mate_20_pro_\(ud\)_firmware:10.1.0.135\(c00e135r3p8\):::::::*`
huawei / mate 20 pro \(ud\)	`cpe:2.3:h:huawei:mate_20_pro_\(ud\):-:::::::*`
huawei / nova 5i firmware	`cpe:2.3:o:huawei:nova_5i_firmware::::::::`
huawei / nova 5i	`cpe:2.3:h:huawei:nova_5i:-:::::::*`