CVE-2020-9256
MEDIUMHuawei Mate 30 Pro <10.1.0.150(C00E136R5P3 - Privilege Escalation
Title source: llmDescription
Huawei Mate 30 Pro smartphones with versions earlier than 10.1.0.150(C00E136R5P3) have an improper authorization vulnerability. The system does not properly restrict the use of system service by applications, the attacker should trick the user into installing a malicious application, successful exploit could cause a denial of audio service.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-05-smartphone-en
Scores
CVSS v3
6.5
EPSS
0.0015
EPSS Percentile
34.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Details
Status
published
Products (1)
huawei/mate_30_pro_firmware
< 10.1.0.150\(c00e136r5p3\)
Published
Jul 18, 2020
Tracked Since
Feb 18, 2026