Vulnerability Description
HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E19R2P5patch02), versions earlier than 10.1.0.126(C10E11R5P1), and versions earlier than 10.1.0.160(C00E160R2P8) have a logic check error vulnerability. A logic error occurs when the software checking the size of certain parameter, the attacker should trick the user into installing a malicious application, successful exploit may cause code execution.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Huawei | P30 Pro Firmware | < 10.1.0.123\(c432e19r2p5patch02\) |
| Huawei | P30 Pro | - |
Related Weaknesses (CWE)
References
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-04-smartpVendor Advisory
- https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-04-smartpVendor Advisory
FAQ
What is CVE-2020-9254?
CVE-2020-9254 is a vulnerability with a CVSS score of 7.8 (HIGH). HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E19R2P5patch02), versions earlier than 10.1.0.126(C10E11R5P1), and versions earlier than 10.1.0.160(C00E160R2P8) have a logic check...
How severe is CVE-2020-9254?
CVE-2020-9254 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-9254?
Check the references section above for vendor advisories and patch information. Affected products include: Huawei P30 Pro Firmware, Huawei P30 Pro.