Vulnerability Description
There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Honor 20 Pro Firmware | < 10.1.0.230\(c432e9r5p1\) |
| Huawei | Honor 20 Pro | - |
| Huawei | Princeton-Al10D Firmware | < 10.1.0.168\(c00e166r4p11\) |
| Huawei | Princeton-Al10D | - |
| Huawei | Yale-L21A Firmware | < 10.1.0.230\(c432e9r5p1\) |
| Huawei | Yale-L21A | - |
| Huawei | Yale-L61A Firmware | < 10.1.0.225\(c432e3r1p2\) |
| Huawei | Yale-L61A | - |
References
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartpVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartpVendor Advisory
FAQ
What is CVE-2020-9223?
CVE-2020-9223 is a vulnerability with a CVSS score of 7.5 (HIGH). There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial o...
How severe is CVE-2020-9223?
CVE-2020-9223 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9223?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei Honor 20 Pro Firmware, Huawei Honor 20 Pro, Huawei Princeton-Al10D Firmware, Huawei Princeton-Al10D, Huawei Yale-L21A Firmware.