MEDIUM🇵🇱 Wersja polska

CVE-2020-9069

CVSS 6.5v3.1pub. 2020-05-21upd. 2024-11-21

There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker could exploit this vulnerability to decrypt data. Successful exploitation may leak information randomly. Affected product versions include: Anne-AL00 Versions earlier than 9.1.0.331(C675E9R1P3T8); Berkeley-L09 Versions earlier than 10.0.1.1(C675R1); CD16-10 Versions earlier than 10.0.2.8; CD17-10 Versions earlier than 10.0.2.8; CD17-16 Versions earlier than 10.0.2.8; CD18-10 Versions earlier than 10.0.2.8; CD18-16 Versions earlier than 10.0.2.8; Columbia-TL00B Versions earlier than 9.0.0.187(C01E181R1P20T8); E6878-370 Versions earlier than 10.0.5.1(H610SP10C00); HUAWEI P30 lite Versions earlier than 10.0.0.185(C605E3R1P3), Versions earlier than 10.0.0.197(C432E8R2P7); HUAWEI nova 4e Versions earlier than 10.0.0.158(C00E64R1P9); Honor 10 Lite 9.0.1.113(C675E11R1P12); LelandP-L22A Versions earlier than 9.1.0.166(C675E5R1P4T8); Marie-AL00AX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00AY Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00BX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-L03BX Versions earlier than 10.0.0.188(C605E5R1P1); Marie-L21BX Versions earlier than 10.0.0.188(C432E4R4P1), Versions earlier than 10.0.0.188(C461E5R3P1); Marie-L22BX Versions earlier than 10.0.0.188(C636E3R3P1); Marie-L23BX Versions earlier than 10.0.0.188(C605E5R1P1); TC5200-16 Versions earlier than 10.0.2.8; WS5200-11 Versions earlier than 10.0.2.8; WS5200-12 Versions earlier than 10.0.2.23; WS5200-16 Versions earlier than 10.0.2.8; WS5200-17 Versions earlier than 10.0.2.23; WS5800-10 Versions earlier than 10.0.3.27; WS6500-10 Versions earlier than 10.0.2.8; WS6500-16 Versions earlier than 10.0.2.8

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  • Huawei Anne Al00

    HW
    Huawei
    wszystkie wersje
  • Huawei Anne Al00 Firmware

    OS
    Huawei
    < 9.1.0.331\(c675e9r1p3t8\)
  • Huawei Berkeley L09

    HW
    Huawei
    wszystkie wersje
  • Huawei Berkeley L09 Firmware

    OS
    Huawei
    < 10.0.1.1\(c675r1\)
  • Huawei Cd16 10

    HW
    Huawei
    wszystkie wersje
  • Huawei Cd16 10 Firmware

    OS
    Huawei
    < 10.0.2.8
  • Huawei Cd17 10

    HW
    Huawei
    wszystkie wersje
  • Huawei Cd17 10 Firmware

    OS
    Huawei
    < 10.0.2.8
  • Huawei Cd17 16

    HW
    Huawei
    wszystkie wersje
  • Huawei Cd17 16 Firmware

    OS
    Huawei
    < 10.0.2.8
  • Huawei Cd18 10

    HW
    Huawei
    wszystkie wersje
  • Huawei Cd18 10 Firmware

    OS
    Huawei
    < 10.0.2.8
  • Huawei Cd18 16

    HW
    Huawei
    wszystkie wersje
  • Huawei Cd18 16 Firmware

    OS
    Huawei
    < 10.0.2.8
  • Huawei Columbia Tl00b

    HW
    Huawei
    wszystkie wersje
  • Huawei Columbia Tl00b Firmware

    OS
    Huawei
    < 9.0.0.187\(c01e181r1p20t8\)
  • Huawei E6878 370

    HW
    Huawei
    wszystkie wersje
  • Huawei E6878 370 Firmware

    OS
    Huawei
    < 10.0.5.1\(h610sp10c00\)
  • Huawei Honor 10 Lite

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor 10 Lite Firmware

    OS
    Huawei
    < 10.0.0.182\(c675e17r2p2\)
  • Huawei Lelandp L22a

    HW
    Huawei
    wszystkie wersje
  • Huawei Lelandp L22a Firmware

    OS
    Huawei
    < 9.1.0.166\(c675e5r1p4t8\)
  • Huawei Tc5200 16

    HW
    Huawei
    wszystkie wersje
  • Huawei Tc5200 16 Firmware

    OS
    Huawei
    < 10.0.2.8
  • Huawei Ws5200 11

    HW
    Huawei
    wszystkie wersje
  • Huawei Ws5200 11 Firmware

    OS
    Huawei
    < 10.0.2.8< 10.0.2.23
  • Huawei Ws5200 16

    HW
    Huawei
    wszystkie wersje
  • Huawei Ws5200 16 Firmware

    OS
    Huawei
    < 10.0.2.8
  • Huawei Ws5200 17

    HW
    Huawei
    wszystkie wersje
  • Huawei Ws5200 17 Firmware

    OS
    Huawei
    < 10.0.2.23
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2020-0069HIGH7.8⚠ KEVten sam produkt

In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to ins...

CVE-2019-2215HIGH7.8⚠ KEVten sam produkt

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user...

CVE-2020-9241HIGH7.0ten sam produkt

Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1(H563SP1C00),10.0.3.1(H563SP21C233) have an improper ...

CVE-2020-1832HIGH8.8ten sam produkt

E6878-370 products with versions of 10.0.3.1(H557SP27C233) and 10.0.3.1(H563SP1C00) have a stack buffer overfl...

CVE-2020-1799HIGH7.5ten sam produkt

E6878-370 with versions of 10.0.3.1(H557SP27C233), 10.0.3.1(H563SP1C00), 10.0.3.1(H563SP1C233) has a use after...