{ "id": "CVE-2020-9203", "sourceIdentifier": "psirt@huawei.com", "published": "2021-01-13T22:15:14.240", "lastModified": "2021-01-19T20:57:23.797", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "There is a resource management errors vulnerability in Huawei P30. Local attackers construct broadcast message for some application, causing this application to send this broadcast message and impact the customer's use experience." }, { "lang": "es", "value": "Se presenta una vulnerabilidad de errores de administraci\u00f3n de recursos en Huawei P30. Los atacantes locales construyen un mensaje de difusi\u00f3n para alguna aplicaci\u00f3n, causando que esta aplicaci\u00f3n env\u00ede este mensaje de difusi\u00f3n y afecte la experiencia de uso del cliente." } ], "metrics": { "cvssMetricV31": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW", "baseScore": 3.3, "baseSeverity": "LOW" }, "exploitabilityScore": 1.8, "impactScore": 1.4 } ], "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1 }, "baseSeverity": "LOW", "exploitabilityScore": 3.9, "impactScore": 2.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-400" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.1.0.168\\(c00e168r2p11\\)", "matchCriteriaId": "E66C9CB0-9801-4BA3-8B18-EAE69C0D4E28" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*", "matchCriteriaId": "21EE286C-8111-4F59-8CF1-13C68EA76B21" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.1.0.168\\(c01e168r2p11\\)", "matchCriteriaId": "79D42878-0C41-42A4-ABB7-D2718FBCCC3A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*", "matchCriteriaId": "21EE286C-8111-4F59-8CF1-13C68EA76B21" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.1.0.176\\(c635e4r2p4\\)", "matchCriteriaId": "969F600F-FF64-4877-910E-C2225D4369A0" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*", "matchCriteriaId": "21EE286C-8111-4F59-8CF1-13C68EA76B21" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.1.0.177\\(c636e8r3p4\\)", "matchCriteriaId": "E232F53B-F07B-425E-A0D8-EFEB551480DE" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*", "matchCriteriaId": "21EE286C-8111-4F59-8CF1-13C68EA76B21" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.1.0.179\\(c10e8r5p1\\)", "matchCriteriaId": "6CA3B6ED-CFED-4028-8E6D-635953C1D688" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*", "matchCriteriaId": "21EE286C-8111-4F59-8CF1-13C68EA76B21" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.1.0.179\\(c185e7r7p1\\)", "matchCriteriaId": "BAC827CA-67AE-4B8B-A108-6EBBBDF12D4A" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*", "matchCriteriaId": "21EE286C-8111-4F59-8CF1-13C68EA76B21" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:huawei:p30_firmware:*:*:*:*:*:*:*:*", "versionEndExcluding": "10.1.0.179\\(c605e23r1p3\\)", "matchCriteriaId": "D5EF9C16-CA18-4841-A045-902D728B6439" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:h:huawei:p30:-:*:*:*:*:*:*:*", "matchCriteriaId": "21EE286C-8111-4F59-8CF1-13C68EA76B21" } ] } ] } ], "references": [ { "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201230-01-resourcemanagement-en", "source": "psirt@huawei.com", "tags": [ "Vendor Advisory" ] } ] }