First published: Fri Dec 27 2024(Updated: )
There is a stack overflow vulnerability in some Huawei smart phone. An attacker can craft specific packet to exploit this vulnerability. Due to insufficient verification, this could be exploited to tamper with the information to affect the availability. (Vulnerability ID: HWPSIRT-2019-11030) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9253.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
All of | ||
Huawei Lion-al00c | <10.1.0.150\(c00e136r5p3\) | |
Huawei Lion-al00c Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-9253 is classified as a critical severity vulnerability due to its potential impact on system availability.
To mitigate CVE-2020-9253, it is recommended to update the Huawei Lion-al00c firmware to the latest version provided by the manufacturer.
CVE-2020-9253 specifically affects the Huawei Lion-al00c smartphone running firmware versions prior to 10.1.0.150.
Yes, CVE-2020-9253 can be exploited to tamper with information due to insufficient verification.
An attacker can exploit CVE-2020-9253 by crafting specific packets to induce a stack overflow.