CVE-2020-9252

Summary

HUAWEI Mate 20 versions earlier than 10.1.0.160(C00E160R3P8), HUAWEI Mate 20 X versions earlier than 10.1.0.135(C00E135R2P8), HUAWEI Mate 20 RS versions earlier than 10.1.0.160(C786E160R3P8), and Honor Magic2 smartphones versions earlier than 10.1.0.160(C00E160R2P11) have a path traversal vulnerability. The system does not sufficiently validate certain pathname from certain process, successful exploit could allow the attacker write files to a crafted path.

Affected Software

VendorProductVersion RangeStatus
n/aHUAWEI Mate 20Versions earlier than 10.1.0.160(C00E160R3P8)affected
n/aHUAWEI Mate 20 XVersions earlier than 10.1.0.135(C00E135R2P8)affected
n/aHUAWEI Mate 20 RSVersions earlier than 10.1.0.160(C786E160R3P8)affected
n/aHonor Magic2Versions earlier than 10.1.0.160(C00E160R2P11)affected

Weaknesses

  • Path Traversal

ADP Enrichment

CVE Program Container

Additional References

References