CVE-2020-1804
First published: Mon Apr 27 2020(Updated: )
Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters received, that would lead to several bytes out of bound read. Successful exploit may cause information disclosure or service abnormal. This is 1 out of 3 out of bounds vulnerabilities found. Different than CVE-2020-1805 and CVE-2020-1806.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Honor V10 Firmware | <10.0.0.156\(c00e156r2p4\) | |
| Huawei Honor V10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-1804?
CVE-2020-1804 is a vulnerability affecting Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) that allows for out of bounds reads.
How does CVE-2020-1804 impact Huawei Honor V10 smartphones?
CVE-2020-1804 can lead to information disclosure as it allows for out of bounds reads on certain driver programs.
What is the severity of CVE-2020-1804?
The severity of CVE-2020-1804 is 7.1 (High).
How can I fix CVE-2020-1804?
To fix CVE-2020-1804, update your Huawei Honor V10 smartphone to version 10.0.0.156(C00E156R2P4) or later.
Where can I find more information about CVE-2020-1804?
You can find more information about CVE-2020-1804 in the Huawei security advisory at https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-02-smartphone-en.
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/huawei
- canonical/huawei honor v10 firmware
- canonical/huawei honor v10