Vulnerabilities > CVE-2020-9253 - Out-of-bounds Write vulnerability in Huawei Lion-Al00C Firmware 10.0.0.205(C00E202R7P2)

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

huawei

CWE-787

NVD

Published: 2024-12-27

Updated: 2025-01-13

Summary

There is a stack overflow vulnerability in some Huawei smart phone. An attacker can craft specific packet to exploit this vulnerability. Due to insufficient verification, this could be exploited to tamper with the information to affect the availability. (Vulnerability ID: HWPSIRT-2019-11030) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9253.

Vulnerable Configurations

Part	Description	Count
OS	Huawei Huawei Lion Al00C Firmware - Huawei Lion Al00C Firmware 10.0.0.205\(C00E202R7P2\)	2
Hardware	Huawei Huawei Lion Al00C -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200715-08-smartphone-en