Out-of-bounds Read in Huawei Mate_30
CVE-2020-9125
There is an out-of-bound read vulnerability in huawei smartphone Mate 30 versions earlier than 10.1.0.156 (C00E155R7P2). An attacker with specific permission can exploit this vulnerability by sending crafted packet with specific parameter…
Vulnerability class: Buffer Overflow
EPSS: 0.002 (15.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.7 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Huawei Mate_30
- Huawei Mate_30_firmware
- N/a Huawei Mate 30 — versions Versions earlier than 10.1.0.156(C00E155R7P2)
Weakness classification (CWE)
References
- psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)
Frequently asked questions
- What is CVE-2020-9125?
- CVE-2020-9125 is a medium-severity vulnerability in Huawei Mate_30, classified under Out-of-bounds Read. CVSS score: 6.7/10. Published 2020-12-29.
- How severe is CVE-2020-9125?
- Medium severity. CVSS v3 base score is 6.7 out of 10.