NotCVE - vendor:"Huawei" product:"HUAWEI Mate 20 Pro"

3 results (0.003 seconds)

CVSS: 5.0EPSS: 0%CPEs: 9EXPL: 0

CVE-2020-9081

https://notcve.org/view.php?id=CVE-2020-9081

27 Dec 2024 — There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9081. • https://www.huawei.com/en/psirt/security-advisories/2020/huawei-sa-20200826-15-smartphone-en • CWE-285: Improper Authorization •

CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0

CVE-2020-9080

https://notcve.org/view.php?id=CVE-2020-9080

27 Dec 2024 — There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specific input to exploit this vulnerability. Successful exploitation may lead to local privilege escalation. (Vulnerability ID: HWPSIRT-2020-05272) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9080. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200819-01-smartphone-en • CWE-269: Improper Privilege Management •

CVSS: 3.6EPSS: 0%CPEs: 1EXPL: 0

CVE-2020-9250 – Micro Focus Vibe 4.0.6 Cross Site Scripting

https://notcve.org/view.php?id=CVE-2020-9250

28 Mar 2020 — There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated, local attacker can crafts software package to exploit this vulnerability. Due to insufficient verification, successful exploitation may impact the service. (Vulnerability ID: HWPSIRT-2019-12302) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9250. Micro Focus Vibe version 4.0.6 suffers from a cross site scripting vulnerability. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200729-01-smartphone-en • CWE-287: Improper Authentication CWE-522: Insufficiently Protected Credentials •