Huawei Mate 20 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Huawei Mate 20 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (31)
CVE-2020-0022 — CVSS 8.8 (high): In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This…
CVE-2019-9506 — CVSS 8.1 (high): The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an…
CVE-2020-9113 — CVSS 8.0 (high): HUAWEI Mate 20 versions earlier than 10.0.0.188(C00E74R3P8) have a buffer overflow vulnerability in the Bluetooth module. Due to…
CVE-2020-9247 — CVSS 7.8 (high): There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration…
CVE-2019-5225 — CVSS 7.8 (high): P30, Mate 20, P30 Pro smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21), versions earlier than…
CVE-2020-9244 — CVSS 6.8 (medium): HUAWEI Mate 20 versions Versions earlier than 10.1.0.160(C00E160R3P8);HUAWEI Mate 20 Pro versions Versions earlier than…
CVE-2020-1796 — CVSS 6.6 (medium): There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain…
CVE-2020-1787 — CVSS 6.6 (medium): HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authentication vulnerability. The system has a…
CVE-2020-1840 — CVSS 6.0 (medium): HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local…
CVE-2019-5251 — CVSS 5.5 (medium): There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the…
CVE-2019-5227 — CVSS 5.5 (medium): P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than…
CVE-2019-5226 — CVSS 5.5 (medium): P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than…
CVE-2018-7956 — CVSS 5.3 (medium): Huawei VIP App is a mobile app for Malaysia customers that purchased P20 Series, Nova 3/3i and Mate 20. There is a vulnerability in…
CVE-2019-5302 — CVSS 5.3 (medium): There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a…
CVE-2019-5303 — CVSS 5.3 (medium): There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a…
CVE-2021-22440 — CVSS 4.6 (medium): There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to…
CVE-2020-1794 — CVSS 4.6 (medium): There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in…
CVE-2020-9092 — CVSS 4.6 (medium): HUAWEI Mate 20 versions earlier than 10.1.0.163(C00E160R3P8) have a JavaScript injection vulnerability. A module does not verify a specific…
CVE-2020-9103 — CVSS 4.6 (medium): HUAWEI Mate 20 smartphones with 9.0.0.205(C00E205R2P1) have a logic error vulnerability. In a special scenario, the system does not…
CVE-2020-9109 — CVSS 4.6 (medium): There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart…
CVE-2020-1793 — CVSS 4.6 (medium): There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in…
CVE-2019-5220 — CVSS 4.6 (medium): There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system does not sufficiently verify the…
CVE-2020-9082 — CVSS 3.5 (low): There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the…
CVE-2020-1807 — CVSS 3.5 (low): HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software…
CVE-2020-9081 — CVSS 3.5 (low): There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific…
CVE-2020-1797 — CVSS 2.4 (low): HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system does…
CVE-2020-9083 — CVSS 2.4 (low): HUAWEI Mate 20 smart phones with Versions earlier than 10.1.0.163(C00E160R3P8) have a denial of service (DoS) vulnerability. The attacker…
CVE-2020-1831 — CVSS 2.4 (low): HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper authorization vulnerability. The digital…
CVE-2020-1795 — CVSS 2.4 (low): There is a logic error vulnerability in several smartphones. The software does not properly restrict certain operation when the Digital…
CVE-2020-1791 — CVSS 2.4 (low): HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system has a…
CVE-2020-9252 — CVSS 2.3 (low): HUAWEI Mate 20 versions earlier than 10.1.0.160(C00E160R3P8), HUAWEI Mate 20 X versions earlier than 10.1.0.135(C00E135R2P8), HUAWEI Mate…