CVE-2020-9069

Summary

There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker could exploit this vulnerability to decrypt data. Successful exploitation may leak information randomly. Affected product versions include: Anne-AL00 Versions earlier than 9.1.0.331(C675E9R1P3T8); Berkeley-L09 Versions earlier than 10.0.1.1(C675R1); CD16-10 Versions earlier than 10.0.2.8; CD17-10 Versions earlier than 10.0.2.8; CD17-16 Versions earlier than 10.0.2.8; CD18-10 Versions earlier than 10.0.2.8; CD18-16 Versions earlier than 10.0.2.8; Columbia-TL00B Versions earlier than 9.0.0.187(C01E181R1P20T8); E6878-370 Versions earlier than 10.0.5.1(H610SP10C00); HUAWEI P30 lite Versions earlier than 10.0.0.185(C605E3R1P3), Versions earlier than 10.0.0.197(C432E8R2P7); HUAWEI nova 4e Versions earlier than 10.0.0.158(C00E64R1P9); Honor 10 Lite 9.0.1.113(C675E11R1P12); LelandP-L22A Versions earlier than 9.1.0.166(C675E5R1P4T8); Marie-AL00AX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00AY Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00BX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-L03BX Versions earlier than 10.0.0.188(C605E5R1P1); Marie-L21BX Versions earlier than 10.0.0.188(C432E4R4P1), Versions earlier than 10.0.0.188(C461E5R3P1); Marie-L22BX Versions earlier than 10.0.0.188(C636E3R3P1); Marie-L23BX Versions earlier than 10.0.0.188(C605E5R1P1); TC5200-16 Versions earlier than 10.0.2.8; WS5200-11 Versions earlier than 10.0.2.8; WS5200-12 Versions earlier than 10.0.2.23; WS5200-16 Versions earlier than 10.0.2.8; WS5200-17 Versions earlier than 10.0.2.23; WS5800-10 Versions earlier than 10.0.3.27; WS6500-10 Versions earlier than 10.0.2.8; WS6500-16 Versions earlier than 10.0.2.8

Affected Software

VendorProductVersion RangeStatus
HUAWEIAnne-AL00earlier than 9.1.0.331(C675E9R1P3T8)affected
HUAWEIBerkeley-L09earlier than 10.0.1.1(C675R1)affected
HUAWEICD16-10earlier than 10.0.2.8affected
HUAWEICD17-10earlier than 10.0.2.8affected
HUAWEICD17-16earlier than 10.0.2.8affected
HUAWEICD18-10earlier than 10.0.2.8affected
HUAWEICD18-16earlier than 10.0.2.8affected
HUAWEIColumbia-TL00Bearlier than 9.0.0.187(C01E181R1P20T8)affected
HUAWEIE6878-370earlier than 10.0.5.1(H610SP10C00)affected
HUAWEIHUAWEI P30 liteearlier than 10.0.0.185(C605E3R1P3)affected
HUAWEIHUAWEI P30 liteearlier than 10.0.0.197(C432E8R2P7)affected
HUAWEIHUAWEI nova 4eearlier than 10.0.0.158(C00E64R1P9)affected
HUAWEIHonor 10 Lite9.0.1.113(C675E11R1P12)affected
HUAWEILelandP-L22Aearlier than 9.1.0.166(C675E5R1P4T8)affected
HUAWEIMarie-AL00AXearlier than 10.0.0.158(C00E64R1P9)affected
HUAWEIMarie-AL00AYearlier than 10.0.0.158(C00E64R1P9)affected
HUAWEIMarie-AL00BXearlier than 10.0.0.158(C00E64R1P9)affected
HUAWEIMarie-L03BXearlier than 10.0.0.188(C605E5R1P1)affected
HUAWEIMarie-L21BXearlier than 10.0.0.188(C432E4R4P1)affected
HUAWEIMarie-L21BXearlier than 10.0.0.188(C461E5R3P1)affected
HUAWEIMarie-L22BXearlier than 10.0.0.188(C636E3R3P1)affected
HUAWEIMarie-L23BXearlier than 10.0.0.188(C605E5R1P1)affected
HUAWEITC5200-16earlier than 10.0.2.8affected
HUAWEIWS5200-11earlier than 10.0.2.8affected
HUAWEIWS5200-12earlier than 10.0.2.23affected
HUAWEIWS5200-16earlier than 10.0.2.8affected
HUAWEIWS5200-17earlier than 10.0.2.23affected
HUAWEIWS5800-10earlier than 10.0.3.27affected
HUAWEIWS6500-10earlier than 10.0.2.8affected
HUAWEIWS6500-16earlier than 10.0.2.8affected

Weaknesses

  • Information Leakage

ADP Enrichment

CVE Program Container

Additional References

References