Huawei Smart Phone Stack Overflow Vulnerability
CVE-2020-9253 Published on December 27, 2024

There is a stack overflow vulnerability in some Huawei smart phone. An attacker can craft specific packet to exploit this vulnerability. Due to insufficient verification, this could be exploited to tamper with the information to affect the availability. (Vulnerability ID: HWPSIRT-2019-11030) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9253.

NVD

Vulnerability Analysis

CVE-2020-9253 can be exploited with network access, requires user interaction. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to be low. considered to have a small impact on confidentiality and integrity and availability.

Attack Vector:
NETWORK
Attack Complexity:
LOW
Privileges Required:
NONE
User Interaction:
REQUIRED
Scope:
UNCHANGED
Confidentiality Impact:
LOW
Integrity Impact:
LOW
Availability Impact:
LOW

Weakness Type

What is a Stack Overflow Vulnerability?

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

CVE-2020-9253 has been classified to as a Stack Overflow vulnerability or weakness.


Products Associated with CVE-2020-9253

Want to know whenever a new CVE is published for Huawei Lion Al00c Firmware? stack.watch will email you.

Huawei Lion Al00c Firmware
 

Affected Versions

Huawei Lion-AL00C Version Versions earlier than 10.1.0.150(C00E136R5P3) is affected by CVE-2020-9253

Exploit Probability

EPSS
0.17%
Percentile
37.95%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.