CVE-2020-1882 (GCVE-0-2020-1882)

Vulnerability from cvelistv5 – Published: 2020-02-17 23:43 – Updated: 2024-08-04 06:53
VLAI
Summary
Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations.
Severity
4.6 (Medium)
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CWE
  • Improper Authorization
Assigner
References
Impacted products
Vendor Product Version
Huawei Ever-L29B Affected: earlier than 10.0.0.180(C185E6R3P3)
Affected: earlier than 10.0.0.180(C432E6R1P7)
Affected: earlier than 10.0.0.180(C636E5R2P3)
Create a notification for this product.
Huawei HUAWEI Mate 20 RS Affected: earlier than 10.0.0.175(C786E70R3P8)
Create a notification for this product.
Huawei HUAWEI Mate 20 X Affected: earlier than 10.0.0.176(C00E70R2P8)
Create a notification for this product.
Huawei Honor Magic2 Affected: earlier than 10.0.0.175(C00E59R2P11)
Create a notification for this product.
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T06:53:59.894Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Ever-L29B",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.180(C185E6R3P3)"
            },
            {
              "status": "affected",
              "version": "earlier than 10.0.0.180(C432E6R1P7)"
            },
            {
              "status": "affected",
              "version": "earlier than 10.0.0.180(C636E5R2P3)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 RS",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.175(C786E70R3P8)"
            }
          ]
        },
        {
          "product": "HUAWEI Mate 20 X",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.176(C00E70R2P8)"
            }
          ]
        },
        {
          "product": "Honor Magic2",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.175(C00E59R2P11)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Improper Authorization",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-02-17T23:43:27.000Z",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2020-1882",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Ever-L29B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.180(C185E6R3P3)"
                          },
                          {
                            "version_value": "earlier than 10.0.0.180(C432E6R1P7)"
                          },
                          {
                            "version_value": "earlier than 10.0.0.180(C636E5R2P3)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 RS",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.175(C786E70R3P8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI Mate 20 X",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.176(C00E70R2P8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor Magic2",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.175(C00E59R2P11)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Improper Authorization"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2020-1882",
    "datePublished": "2020-02-17T23:43:27.000Z",
    "dateReserved": "2019-11-29T00:00:00.000Z",
    "dateUpdated": "2024-08-04T06:53:59.894Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2020-1882",
      "date": "2026-06-25",
      "epss": "0.00214",
      "percentile": "0.11653"
    },
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:huawei:mate_20_rs_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.0.175\\\\(c786e70r3p8\\\\)\", \"matchCriteriaId\": \"6BA794B3-655E-433D-93E0-2E30518047B2\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:huawei:mate_20_rs:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99DD3EC3-7E9B-4904-8317-C3528D1CAFEA\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:huawei:mate_20_x_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.0.176\\\\(c00e70r2p8\\\\)\", \"matchCriteriaId\": \"E1FD50E7-D070-4757-BEBB-56A03E50885D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:huawei:mate_20_x:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5FD3779B-F943-4B7E-BF82-AA4A051D02C8\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:huawei:honor_magic2_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.0.175\\\\(c00e59r2p11\\\\)\", \"matchCriteriaId\": \"51133684-7686-4963-B4F3-AE717B099483\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:huawei:honor_magic2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86489593-F6E2-480E-9381-540FA4256A84\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:huawei:ever-l29b_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.0.180\\\\(c185e6r3p3\\\\)\", \"matchCriteriaId\": \"374EC3D2-C052-4F03-B5AC-312D811ECC9C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:huawei:ever-l29b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEB4EC14-14DE-4AAF-A951-071B4E39270A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:huawei:ever-l29b_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.0.180\\\\(c432e6r1p7\\\\)\", \"matchCriteriaId\": \"A5F95B6E-95CB-4A0D-801B-7ACC66F2ACF4\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:huawei:ever-l29b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEB4EC14-14DE-4AAF-A951-071B4E39270A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:huawei:ever-l29b_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"10.0.0.180\\\\(c636e5r2p3\\\\)\", \"matchCriteriaId\": \"A4C190EC-017C-430E-95E6-E89F30790B06\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:huawei:ever-l29b:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEB4EC14-14DE-4AAF-A951-071B4E39270A\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations.\"}, {\"lang\": \"es\", \"value\": \"Los tel\\u00e9fonos m\\u00f3viles Huawei Ever-L29B versiones anteriores a 10.0.0.180(C185E6R3P3), anteriores a 10.0.0.180(C432E6R1P7), anteriores a 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versiones anteriores a 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versiones anteriores a 10.0.0.176(C00E70R2P8); y Honor Magic2 versiones anteriores a 10.0.0.175(C00E59R2P11), presentan una vulnerabilidad de autorizaci\\u00f3n inapropiada. Debido a una autorizaci\\u00f3n inapropiada de alguna funci\\u00f3n, un atacante puede omitir la autorizaci\\u00f3n para llevar a cabo algunas operaciones.\"}]",
      "id": "CVE-2020-1882",
      "lastModified": "2024-11-21T05:11:32.377",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\", \"baseScore\": 4.6, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"PHYSICAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 0.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:N/I:P/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2020-02-18T00:15:11.460",
      "references": "[{\"url\": \"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en\", \"source\": \"psirt@huawei.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "psirt@huawei.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-1882\",\"sourceIdentifier\":\"psirt@huawei.com\",\"published\":\"2020-02-18T00:15:11.460\",\"lastModified\":\"2024-11-21T05:11:32.377\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations.\"},{\"lang\":\"es\",\"value\":\"Los tel\u00e9fonos m\u00f3viles Huawei Ever-L29B versiones anteriores a 10.0.0.180(C185E6R3P3), anteriores a 10.0.0.180(C432E6R1P7), anteriores a 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versiones anteriores a 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versiones anteriores a 10.0.0.176(C00E70R2P8); y Honor Magic2 versiones anteriores a 10.0.0.175(C00E59R2P11), presentan una vulnerabilidad de autorizaci\u00f3n inapropiada. Debido a una autorizaci\u00f3n inapropiada de alguna funci\u00f3n, un atacante puede omitir la autorizaci\u00f3n para llevar a cabo algunas operaciones.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N\",\"baseScore\":4.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"PHYSICAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":0.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:N/I:P/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:mate_20_rs_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.0.175\\\\(c786e70r3p8\\\\)\",\"matchCriteriaId\":\"6BA794B3-655E-433D-93E0-2E30518047B2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:huawei:mate_20_rs:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99DD3EC3-7E9B-4904-8317-C3528D1CAFEA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:mate_20_x_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.0.176\\\\(c00e70r2p8\\\\)\",\"matchCriteriaId\":\"E1FD50E7-D070-4757-BEBB-56A03E50885D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:huawei:mate_20_x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5FD3779B-F943-4B7E-BF82-AA4A051D02C8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:honor_magic2_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.0.175\\\\(c00e59r2p11\\\\)\",\"matchCriteriaId\":\"51133684-7686-4963-B4F3-AE717B099483\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:huawei:honor_magic2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86489593-F6E2-480E-9381-540FA4256A84\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:ever-l29b_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.0.180\\\\(c185e6r3p3\\\\)\",\"matchCriteriaId\":\"374EC3D2-C052-4F03-B5AC-312D811ECC9C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:huawei:ever-l29b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEB4EC14-14DE-4AAF-A951-071B4E39270A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:ever-l29b_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.0.180\\\\(c432e6r1p7\\\\)\",\"matchCriteriaId\":\"A5F95B6E-95CB-4A0D-801B-7ACC66F2ACF4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:huawei:ever-l29b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEB4EC14-14DE-4AAF-A951-071B4E39270A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:ever-l29b_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.0.180\\\\(c636e5r2p3\\\\)\",\"matchCriteriaId\":\"A4C190EC-017C-430E-95E6-E89F30790B06\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:huawei:ever-l29b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEB4EC14-14DE-4AAF-A951-071B4E39270A\"}]}]}],\"references\":[{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en\",\"source\":\"psirt@huawei.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.





Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.


Detection rules are retrieved from Rulezet.