CVE-2020-9253

MEDIUM

Huawei LION-AL00C Firmware < 10.1.0.150(c00e136r5p3) - Stack-based Buffer Overflow

Title source: llm

Description

There is a stack overflow vulnerability in some Huawei smart phone. An attacker can craft specific packet to exploit this vulnerability. Due to insufficient verification, this could be exploited to tamper with the information to affect the availability. (Vulnerability ID: HWPSIRT-2019-11030) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9253.

References (1)

Core 1

Core References

Vendor Advisory

https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200715-08-smartphone-en

Scores

CVSS v3 6.3

EPSS 0.0017

EPSS Percentile 37.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-121 CWE-787

Status published

Products (1)

huawei/lion-al00c_firmware < 10.1.0.150\(c00e136r5p3\)

Published Dec 27, 2024

Tracked Since Feb 18, 2026