CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2020-9117
https://notcve.org/view.php?id=CVE-2020-9117
01 Dec 2020 — HUAWEI nova 4 versions earlier than 10.0.0.165(C01E34R2P4) and SydneyM-AL00 versions earlier than 10.0.0.165(C00E66R1P5) have an out-of-bounds read and write vulnerability. An attacker with specific permissions crafts malformed packet with specific parameter and sends the packet to the affected products. Due to insufficient validation of packet, which may be exploited to cause the information leakage or arbitrary code execution. HUAWEI nova 4 versiones anteriores a 10.0.0.165(C01E34R2P4) y SydneyM-AL00 vers... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201125-01-outofboundread-en • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 1%CPEs: 77EXPL: 4CVE-2020-0069 – Mediatek Multiple Chipsets Insufficient Input Validation Vulnerability
https://notcve.org/view.php?id=CVE-2020-0069
10 Mar 2020 — In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147882143References: M-ALPS04356754 En los manejadores de ioctl del controlador Mediatek de Command Queue, hay una posible escritura fuera d... • https://github.com/R0rt1z2/AutomatedRoot • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 24EXPL: 0CVE-2020-1785
https://notcve.org/view.php?id=CVE-2020-1785
03 Jan 2020 — Mate 10 Pro;Honor V10;Honor 10;Nova 4 smartphones have a denial of service vulnerability. The system does not properly check the status of certain module during certain operations, an attacker should trick the user into installing a malicious application, successful exploit could cause reboot of the smartphone. Los teléfonos inteligentes Mate 10 Pro; Honor V10; Honor 10; Nova 4, tiene una vulnerabilidad de denegación de servicio. El sistema no comprueba apropiadamente el estado de cierto módulo durante dete... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200102-03-smartphone-en •