CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0CVE-2020-9082
https://notcve.org/view.php?id=CVE-2020-9082
27 Dec 2024 — There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the attacker should gain the permit to execute commands in ADB mode and then do a series of operation on the phone. Successful exploit could allow the attacker to gain certain information from certain apps locked by Applock. (Vulnerability ID: HWPSIRT-2019-07112) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9082. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200826-16-smartphone-en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.0EPSS: 0%CPEs: 9EXPL: 0CVE-2020-9081
https://notcve.org/view.php?id=CVE-2020-9081
27 Dec 2024 — There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9081. • https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200826-15-smartphone-en • CWE-285: Improper Authorization •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-9080
https://notcve.org/view.php?id=CVE-2020-9080
27 Dec 2024 — There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specific input to exploit this vulnerability. Successful exploitation may lead to local privilege escalation. (Vulnerability ID: HWPSIRT-2020-05272) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9080. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200819-01-smartphone-en • CWE-269: Improper Privilege Management •
CVSS: 3.6EPSS: 0%CPEs: 1EXPL: 0CVE-2020-9250 – Micro Focus Vibe 4.0.6 Cross Site Scripting
https://notcve.org/view.php?id=CVE-2020-9250
28 Mar 2020 — There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated, local attacker can crafts software package to exploit this vulnerability. Due to insufficient verification, successful exploitation may impact the service. (Vulnerability ID: HWPSIRT-2019-12302) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9250. Micro Focus Vibe version 4.0.6 suffers from a cross site scripting vulnerability. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-smartphone-en • CWE-287: Improper Authentication CWE-522: Insufficiently Protected Credentials •