CVE-2020-9223

There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
huaweiCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 50%
VendorProductVersion
huaweihonor_20_pro_firmware
𝑥
< 10.1.0.230\(c432e9r5p1\)
huaweihonor_20_pro_firmware
𝑥
< 10.1.0.231\(c10e3r3p2\)
huaweihonor_20_pro_firmware
𝑥
< 10.1.0.231\(c185e3r5p1\)
huaweihonor_20_pro_firmware
𝑥
< 10.1.0.231\(c636e3r3p1\)
huaweiprinceton-al10d_firmware
𝑥
< 10.1.0.168\(c00e166r4p11\)
huaweiyale-l21a_firmware
𝑥
< 10.1.0.230\(c432e9r5p1\)
huaweiyale-l21a_firmware
𝑥
< 10.1.0.231\(c10e3r3p2\)
huaweiyale-l21a_firmware
𝑥
< 10.1.0.231\(c185e2r2p1\)
huaweiyale-l21a_firmware
𝑥
< 10.1.0.231\(c636e3r3p1\)
huaweiyale-l61a_firmware
𝑥
< 10.1.0.225\(c432e3r1p2\)
huaweiyale-l61a_firmware
𝑥
< 10.1.0.226\(c10e3r1p1\)
𝑥
= Vulnerable software versions
References
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-03-smartphone-en