Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-9250

There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated, local attacker can crafts software package to exploit this vulnerability. Due to insufficient verification, successful exploitation may impact the service. (Vulnerability ID: HWPSIRT-2019-12302) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9250.

Published

2024-12-20T02:15:05.150

Last Modified

2025-07-11T14:33:07.873

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 3.3 (LOW)

Weaknesses

Type: Secondary
CWE-287
Type: Secondary
CWE-522

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	huawei	mate_20_pro_firmware	10.1.0.160\(c00e160r3p8\)	Yes
Hardware	huawei	mate_20_pro	-	No

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-smartphone-en Broken Link, Vendor Advisory ([email protected])