ReportizFlow
There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144)
This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9081.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Huawei |
|
Configuration 1 [-]
| AND |
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
| AND |
|
Configuration 5 [-]
| AND |
|
Configuration 6 [-]
| AND |
|
Configuration 7 [-]
| AND |
|
Configuration 8 [-]
| AND |
|
Configuration 9 [-]
| AND |
|
No data.
References
History
Fri, 10 Jan 2025 21:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Huawei
Huawei mate 20 Huawei mate 20 Firmware Huawei p30 Huawei p30 Firmware Huawei p30 Pro Huawei p30 Pro Firmware Huawei princeton-al10d Huawei princeton-al10d Firmware Huawei yale-al00a Huawei yale-al00a Firmware Huawei yale-al50a Huawei yale-al50a Firmware Huawei yalep-al10b Huawei yalep-al10b Firmware |
|
| Weaknesses | CWE-863 | |
| CPEs | cpe:2.3:h:huawei:mate_20:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:p30_pro:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:princeton-al10d:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:yale-al00a:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:yale-al50a:-:*:*:*:*:*:*:* cpe:2.3:h:huawei:yalep-al10b:-:*:*:*:*:*:*:* cpe:2.3:o:huawei:mate_20_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:huawei:p30_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:huawei:princeton-al10d_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:huawei:yale-al00a_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:huawei:yale-al50a_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:huawei:yalep-al10b_firmware:*:*:*:*:*:*:*:* |
|
| Vendors & Products |
Huawei
Huawei mate 20 Huawei mate 20 Firmware Huawei p30 Huawei p30 Firmware Huawei p30 Pro Huawei p30 Pro Firmware Huawei princeton-al10d Huawei princeton-al10d Firmware Huawei yale-al00a Huawei yale-al00a Firmware Huawei yale-al50a Huawei yale-al50a Firmware Huawei yalep-al10b Huawei yalep-al10b Firmware |
Fri, 27 Dec 2024 16:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Fri, 27 Dec 2024 09:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9081. | |
| Weaknesses | CWE-285 | |
| References |
| |
| Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: huawei
Published: 2024-12-27T09:34:40.332Z
Updated: 2024-12-27T16:08:00.642Z
Reserved: 2020-02-18T00:00:00.000Z
Link: CVE-2020-9081
Vulnrichment
Updated: 2024-12-27T16:07:55.781Z
NVD
Status : Analyzed
Published: 2024-12-27T10:15:10.937
Modified: 2025-01-10T20:37:44.267
Link: CVE-2020-9081
Redhat
No data.