CVE-2020-9244
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
11/08/2020
Last modified:
21/07/2021
Description
HUAWEI Mate 20 versions Versions earlier than 10.1.0.160(C00E160R3P8);HUAWEI Mate 20 Pro versions Versions earlier than 10.1.0.270(C431E7R1P5),Versions earlier than 10.1.0.270(C635E3R1P5),Versions earlier than 10.1.0.273(C636E7R2P4);HUAWEI Mate 20 X versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI Mate 20 RS versions Versions earlier than 10.1.0.160(C786E160R3P8);HonorMagic2 versions Versions earlier than 10.0.0.187(C00E61R2P11);Honor20 versions Versions earlier than 10.0.0.175(C00E58R4P11);Honor20 PRO versions Versions earlier than 10.0.0.194(C00E62R8P12);HonorMagic2 versions Versions earlier than 10.0.0.187(C00E61R2P11);HonorV20 versions Versions earlier than 10.0.0.188(C00E62R2P11) have an improper authentication vulnerability. The system does not properly sign certain encrypted file, the attacker should gain the key used to encrypt the file, successful exploit could cause certain file be forged
Impact
Base Score 3.x
6.80
Severity 3.x
MEDIUM
Base Score 2.0
4.60
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:huawei:mate_20_firmware:*:*:*:*:*:*:*:* | 10.1.0.160\(c00e160r3p8\) (excluding) | |
| cpe:2.3:h:huawei:mate_20:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:mate_20_pro_firmware:*:*:*:*:*:*:*:* | 10.1.0.270\(c431e7r1p5\) (excluding) | |
| cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:mate_20_x_firmware:*:*:*:*:*:*:*:* | 10.1.0.160\(c00e160r2p8\) (excluding) | |
| cpe:2.3:h:huawei:mate_20_x:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:* | 10.1.0.160\(c00e160r2p11\) (excluding) | |
| cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:p30_pro_firmware:*:*:*:*:*:*:*:* | 10.1.0.160\(c00e160r2p8\) (excluding) | |
| cpe:2.3:h:huawei:p30_pro:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:mate_20_rs_firmware:*:*:*:*:*:*:*:* | 10.1.0.160\(c786e160r3p8\) (excluding) | |
| cpe:2.3:h:huawei:mate_20_rs:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:honor_magic_2_firmware:*:*:*:*:*:*:*:* | 10.0.0.187\(c00e61r2p11\) (excluding) | |
| cpe:2.3:h:huawei:honor_magic_2:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:honor_20_firmware:*:*:*:*:*:*:*:* | 10.0.0.175\(c00e58r4p11\) (excluding) |
To consult the complete list of CPE names with products and versions, see this page



