ID |
CVE-2020-9258
|
Sažetak |
HUAWEI P30 smartphone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper input verification vulnerability. An attribution in a module is not set correctly and some verification is lacked. Attackers with local access can exploit this vulnerability by injecting malicious fragment. This may lead to user information leak. |
Reference |
|
CVSS |
Base: | 1.9 |
Impact: | 2.9 |
Exploitability: | 3.4 |
|
Pristup |
Vektor | Složenost | Autentikacija |
LOCAL |
MEDIUM |
NONE |
|
Impact |
Povjerljivost | Cjelovitost | Dostupnost |
PARTIAL |
NONE |
NONE |
|
CVSS vektor |
AV:L/AC:M/Au:N/C:P/I:N/A:N |
Zadnje važnije ažuriranje |
21-07-2021 - 11:39 |
Objavljeno |
10-07-2020 - 14:15 |