CVE-2020-9119

MEDIUM

Huawei Mate 10 Firmware < 10.0.0.189(c185e6r1p3) - Privilege Escalation

Title source: llm

Description

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201202-01-smartphone-en

Scores

CVSS v3 6.2

EPSS 0.0003

EPSS Percentile 8.8%

Attack Vector PHYSICAL

CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (5)

huawei/mate_10_firmware < 10.0.0.189\(c185e6r1p3\)

huawei/mate_30_firmware < 10.1.0.156\(c00e155r7p2\)

huawei/mate_30_pro_firmware < 10.1.0.156\(c00e156r7p2\)

huawei/p40_firmware < 10.1.0.150\(sp1c00e150r4p1\)

huawei/p40_pro_firmware < 10.1.0.150\(sp1c00e150r4p1\)

Published Dec 24, 2020

Tracked Since Feb 18, 2026