CVE-2020-9104

HUAWEI P30 smartphones with Versions earlier than 10.1.0.123(C431E22R2P5),Versions earlier than 10.1.0.123(C432E22R2P5),Versions earlier than 10.1.0.126(C10E7R5P1),Versions earlier than 10.1.0.126(C185E4R7P1),Versions earlier than 10.1.0.126(C461E7R3P1),Versions earlier than 10.1.0.126(C605E19R1P3),Versions earlier than 10.1.0.126(C636E7R3P4),Versions earlier than 10.1.0.128(C635E3R2P4),Versions earlier than 10.1.0.160(C00E160R2P11),Versions earlier than 10.1.0.160(C01E160R2P11) have a denial of service vulnerability. In specific scenario, due to the improper resource management and memory leak of some feature, the attacker could exploit this vulnerability to cause the device reset.

Published: Aug 21, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-9104
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CVSS v2:

Severity: Low
Score: 3.3
AV:A/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-401

Affected Software
References

Software	From	Fixed in
huawei / p30_firmware	-	10.1.0.123\(c431e22r2p5\)
huawei / p30_firmware	-	10.1.0.123\(c432e22r2p5\)
huawei / p30_firmware	-	10.1.0.126\(c10e7r5p1\)
huawei / p30_firmware	-	10.1.0.126\(c185e4r7p1\)
huawei / p30_firmware	-	10.1.0.126\(c461e7r3p1\)
huawei / p30_firmware	-	10.1.0.126\(c605e19r1p3\)
huawei / p30_firmware	-	10.1.0.126\(c636e7r3p4\)
huawei / p30_firmware	-	10.1.0.128\(c635e3r2p4\)
huawei / p30_firmware	-	10.1.0.160\(c00e160r2p11\)
huawei / p30_firmware	-	10.1.0.160\(c01e160r2p11\)

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200819-01-smartphonedos-en

Vulnerability Database

289,697

CVE-2020-9104