Out-of-bounds Read in Huawei Honor V10
CVE-2020-1806
Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters received, that would lead to several bytes ou…
Vulnerability class: Buffer Overflow
EPSS: 0.006 (44.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H.
Affected products
- Huawei Honor V10 — versions Versions earlier than 10.0.0.156(C00E156R2P4)
- Huawei Honor_v10
- Huawei Honor_v10_firmware
Weakness classification (CWE)
References
- psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)
Frequently asked questions
- What is CVE-2020-1806?
- CVE-2020-1806 is a high-severity vulnerability in Huawei Honor V10, classified under Out-of-bounds Read. CVSS score: 7.1/10. Published 2020-04-27.
- How severe is CVE-2020-1806?
- High severity. CVSS v3 base score is 7.1 out of 10.