cnvd - cnvd-2020-36726

cnvd-2020-36726

Vulnerability from cnvd

Title: 多款Huawei产品信息泄露漏洞（CNVD-2020-36726）

Description:

Huawei Anne-AL00等都是中国华为（Huawei）公司的产品。Huawei Anne-AL00是一款智能手机。Honor 10 Lite是一款智能手机。Huawei TC5200-16是一款无线路由器。

多款Huawei产品中存在信息泄露漏洞。攻击者可利用该漏洞解密数据，导致随机性的信息泄露。

Severity: 低

Patch Name: 多款Huawei产品信息泄露漏洞（CNVD-2020-36726）的补丁

Patch Description:

Huawei Anne-AL00等都是中国华为（Huawei）公司的产品。Huawei Anne-AL00是一款智能手机。Honor 10 Lite是一款智能手机。Huawei TC5200-16是一款无线路由器。

多款Huawei产品中存在信息泄露漏洞。攻击者可利用该漏洞解密数据，导致随机性的信息泄露。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200520-01-leakage-cn

Reference: https://nvd.nist.gov/vuln/detail/CVE-2020-9069

Impacted products

Name
['Huawei Anne-AL00 <=9.1.0.331(C675E9R1P3T8)', 'Huawei Berkeley-L09 <=10.0.1.1(C675R1)', 'Huawei CD16-10 <=10.0.2.8', 'Huawei CD17-10 <=10.0.2.8', 'Huawei CD17-16 <=10.0.2.8', 'Huawei CD18-10 <=10.0.2.8', 'Huawei CD18-16 <=10.0.2.8', 'Huawei Columbia-TL00B <=9.0.0.187(C01E181R1P20T8)', 'Huawei E6878-370 <=10.0.5.1(H610SP10C00)', 'Huawei HUAWEI P30 lite <=10.0.0.185(C605E3R1P3)', 'Huawei HUAWEI P30 lite <=10.0.0.197(C432E8R2P7)', 'Huawei HUAWEI nova 4e <=10.0.0.158(C00E64R1P9)', 'Huawei Huawei Honor 10 Lite 9.0.1.113(C675E11R1P12)', 'Huawei LelandP-L22A <=9.1.0.166(C675E5R1P4T8)', 'Huawei Marie-AL00AX <=10.0.0.158(C00E64R1P9)', 'Huawei Marie-AL00BX <=10.0.0.158(C00E64R1P9)', 'Huawei Marie-L21BX <=10.0.0.188(C432E4R4P1)', 'Huawei Marie-L21BX <=10.0.0.188(C461E5R3P1)', 'Huawei Marie-L22BX <=10.0.0.188(C636E3R3P1)', 'Huawei Marie-L23BX <=10.0.0.188(C605E5R1P1)', 'Huawei TC5200-16 <=10.0.2.8', 'Huawei WS5200-11 <=10.0.2.8', 'Huawei WS5200-12 <=10.0.2.23', 'Huawei WS5200-16 <=10.0.2.8', 'Huawei WS5200-17 <=10.0.2.23', 'Huawei WS5800-10 <=10.0.3.27', 'Huawei WS6500-10 <=10.0.2.8', 'Huawei WS6500-16 <=10.0.2.8']

Name

['Huawei Anne-AL00 <=9.1.0.331(C675E9R1P3T8)', 'Huawei Berkeley-L09 <=10.0.1.1(C675R1)', 'Huawei CD16-10 <=10.0.2.8', 'Huawei CD17-10 <=10.0.2.8', 'Huawei CD17-16 <=10.0.2.8', 'Huawei CD18-10 <=10.0.2.8', 'Huawei CD18-16 <=10.0.2.8', 'Huawei Columbia-TL00B <=9.0.0.187(C01E181R1P20T8)', 'Huawei E6878-370 <=10.0.5.1(H610SP10C00)', 'Huawei HUAWEI P30 lite <=10.0.0.185(C605E3R1P3)', 'Huawei HUAWEI P30 lite <=10.0.0.197(C432E8R2P7)', 'Huawei HUAWEI nova 4e <=10.0.0.158(C00E64R1P9)', 'Huawei Huawei Honor 10 Lite 9.0.1.113(C675E11R1P12)', 'Huawei LelandP-L22A <=9.1.0.166(C675E5R1P4T8)', 'Huawei Marie-AL00AX <=10.0.0.158(C00E64R1P9)', 'Huawei Marie-AL00BX <=10.0.0.158(C00E64R1P9)', 'Huawei Marie-L21BX <=10.0.0.188(C432E4R4P1)', 'Huawei Marie-L21BX <=10.0.0.188(C461E5R3P1)', 'Huawei Marie-L22BX <=10.0.0.188(C636E3R3P1)', 'Huawei Marie-L23BX <=10.0.0.188(C605E5R1P1)', 'Huawei TC5200-16 <=10.0.2.8', 'Huawei WS5200-11 <=10.0.2.8', 'Huawei WS5200-12 <=10.0.2.23', 'Huawei WS5200-16 <=10.0.2.8', 'Huawei WS5200-17 <=10.0.2.23', 'Huawei WS5800-10 <=10.0.3.27', 'Huawei WS6500-10 <=10.0.2.8', 'Huawei WS6500-16 <=10.0.2.8']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2020-9069"
    }
  },
  "description": "Huawei Anne-AL00\u7b49\u90fd\u662f\u4e2d\u56fd\u534e\u4e3a\uff08Huawei\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Huawei Anne-AL00\u662f\u4e00\u6b3e\u667a\u80fd\u624b\u673a\u3002Honor 10 Lite\u662f\u4e00\u6b3e\u667a\u80fd\u624b\u673a\u3002Huawei TC5200-16\u662f\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\u3002\n\n\u591a\u6b3eHuawei\u4ea7\u54c1\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u89e3\u5bc6\u6570\u636e\uff0c\u5bfc\u81f4\u968f\u673a\u6027\u7684\u4fe1\u606f\u6cc4\u9732\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20200520-01-leakage-cn",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-36726",
  "openTime": "2020-07-07",
  "patchDescription": "Huawei Anne-AL00\u7b49\u90fd\u662f\u4e2d\u56fd\u534e\u4e3a\uff08Huawei\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Huawei Anne-AL00\u662f\u4e00\u6b3e\u667a\u80fd\u624b\u673a\u3002Honor 10 Lite\u662f\u4e00\u6b3e\u667a\u80fd\u624b\u673a\u3002Huawei TC5200-16\u662f\u4e00\u6b3e\u65e0\u7ebf\u8def\u7531\u5668\u3002\r\n\r\n\u591a\u6b3eHuawei\u4ea7\u54c1\u4e2d\u5b58\u5728\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u89e3\u5bc6\u6570\u636e\uff0c\u5bfc\u81f4\u968f\u673a\u6027\u7684\u4fe1\u606f\u6cc4\u9732\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "\u591a\u6b3eHuawei\u4ea7\u54c1\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2020-36726\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Huawei Anne-AL00 \u003c=9.1.0.331(C675E9R1P3T8)",
      "Huawei Berkeley-L09 \u003c=10.0.1.1(C675R1)",
      "Huawei CD16-10 \u003c=10.0.2.8",
      "Huawei CD17-10 \u003c=10.0.2.8",
      "Huawei CD17-16 \u003c=10.0.2.8",
      "Huawei CD18-10 \u003c=10.0.2.8",
      "Huawei CD18-16 \u003c=10.0.2.8",
      "Huawei Columbia-TL00B \u003c=9.0.0.187(C01E181R1P20T8)",
      "Huawei E6878-370 \u003c=10.0.5.1(H610SP10C00)",
      "Huawei HUAWEI P30 lite \u003c=10.0.0.185(C605E3R1P3)",
      "Huawei HUAWEI P30 lite \u003c=10.0.0.197(C432E8R2P7)",
      "Huawei HUAWEI nova 4e \u003c=10.0.0.158(C00E64R1P9)",
      "Huawei Huawei Honor 10 Lite 9.0.1.113(C675E11R1P12)",
      "Huawei LelandP-L22A \u003c=9.1.0.166(C675E5R1P4T8)",
      "Huawei Marie-AL00AX \u003c=10.0.0.158(C00E64R1P9)",
      "Huawei Marie-AL00BX \u003c=10.0.0.158(C00E64R1P9)",
      "Huawei Marie-L21BX \u003c=10.0.0.188(C432E4R4P1)",
      "Huawei Marie-L21BX \u003c=10.0.0.188(C461E5R3P1)",
      "Huawei Marie-L22BX \u003c=10.0.0.188(C636E3R3P1)",
      "Huawei Marie-L23BX \u003c=10.0.0.188(C605E5R1P1)",
      "Huawei TC5200-16 \u003c=10.0.2.8",
      "Huawei WS5200-11 \u003c=10.0.2.8",
      "Huawei WS5200-12 \u003c=10.0.2.23",
      "Huawei WS5200-16 \u003c=10.0.2.8",
      "Huawei WS5200-17 \u003c=10.0.2.23",
      "Huawei WS5800-10 \u003c=10.0.3.27",
      "Huawei WS6500-10 \u003c=10.0.2.8",
      "Huawei WS6500-16 \u003c=10.0.2.8"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-9069",
  "serverity": "\u4f4e",
  "submitTime": "2020-05-22",
  "title": "\u591a\u6b3eHuawei\u4ea7\u54c1\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2020-36726\uff09"
}

CVE-2020-9069 (GCVE-0-2020-9069)

Vulnerability from cvelistv5

Published

2020-05-21 14:19

Modified

2024-08-04 10:19

Severity ?

CWE

Information Leakage

Summary

There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker could exploit this vulnerability to decrypt data. Successful exploitation may leak information randomly. Affected product versions include: Anne-AL00 Versions earlier than 9.1.0.331(C675E9R1P3T8); Berkeley-L09 Versions earlier than 10.0.1.1(C675R1); CD16-10 Versions earlier than 10.0.2.8; CD17-10 Versions earlier than 10.0.2.8; CD17-16 Versions earlier than 10.0.2.8; CD18-10 Versions earlier than 10.0.2.8; CD18-16 Versions earlier than 10.0.2.8; Columbia-TL00B Versions earlier than 9.0.0.187(C01E181R1P20T8); E6878-370 Versions earlier than 10.0.5.1(H610SP10C00); HUAWEI P30 lite Versions earlier than 10.0.0.185(C605E3R1P3), Versions earlier than 10.0.0.197(C432E8R2P7); HUAWEI nova 4e Versions earlier than 10.0.0.158(C00E64R1P9); Honor 10 Lite 9.0.1.113(C675E11R1P12); LelandP-L22A Versions earlier than 9.1.0.166(C675E5R1P4T8); Marie-AL00AX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00AY Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00BX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-L03BX Versions earlier than 10.0.0.188(C605E5R1P1); Marie-L21BX Versions earlier than 10.0.0.188(C432E4R4P1), Versions earlier than 10.0.0.188(C461E5R3P1); Marie-L22BX Versions earlier than 10.0.0.188(C636E3R3P1); Marie-L23BX Versions earlier than 10.0.0.188(C605E5R1P1); TC5200-16 Versions earlier than 10.0.2.8; WS5200-11 Versions earlier than 10.0.2.8; WS5200-12 Versions earlier than 10.0.2.23; WS5200-16 Versions earlier than 10.0.2.8; WS5200-17 Versions earlier than 10.0.2.23; WS5800-10 Versions earlier than 10.0.3.27; WS6500-10 Versions earlier than 10.0.2.8; WS6500-16 Versions earlier than 10.0.2.8

References

▼	URL	Tags
	https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200520-01-leakage-en	x_refsource_CONFIRM

Impacted products

Vendor

Product

Version

▼

HUAWEI

Anne-AL00

Version: earlier than 9.1.0.331(C675E9R1P3T8)

HUAWEI	Berkeley-L09	Version: earlier than 10.0.1.1(C675R1)
HUAWEI	CD16-10	Version: earlier than 10.0.2.8
HUAWEI	CD17-10	Version: earlier than 10.0.2.8
HUAWEI	CD17-16	Version: earlier than 10.0.2.8
HUAWEI	CD18-10	Version: earlier than 10.0.2.8
HUAWEI	CD18-16	Version: earlier than 10.0.2.8
HUAWEI	Columbia-TL00B	Version: earlier than 9.0.0.187(C01E181R1P20T8)
HUAWEI	E6878-370	Version: earlier than 10.0.5.1(H610SP10C00)
HUAWEI	HUAWEI P30 lite	Version: earlier than 10.0.0.185(C605E3R1P3) Version: earlier than 10.0.0.197(C432E8R2P7)
HUAWEI	HUAWEI nova 4e	Version: earlier than 10.0.0.158(C00E64R1P9)
HUAWEI	Honor 10 Lite	Version: 9.0.1.113(C675E11R1P12)
HUAWEI	LelandP-L22A	Version: earlier than 9.1.0.166(C675E5R1P4T8)
HUAWEI	Marie-AL00AX	Version: earlier than 10.0.0.158(C00E64R1P9)
HUAWEI	Marie-AL00AY	Version: earlier than 10.0.0.158(C00E64R1P9)
HUAWEI	Marie-AL00BX	Version: earlier than 10.0.0.158(C00E64R1P9)
HUAWEI	Marie-L03BX	Version: earlier than 10.0.0.188(C605E5R1P1)
HUAWEI	Marie-L21BX	Version: earlier than 10.0.0.188(C432E4R4P1) Version: earlier than 10.0.0.188(C461E5R3P1)
HUAWEI	Marie-L22BX	Version: earlier than 10.0.0.188(C636E3R3P1)
HUAWEI	Marie-L23BX	Version: earlier than 10.0.0.188(C605E5R1P1)
HUAWEI	TC5200-16	Version: earlier than 10.0.2.8
HUAWEI	WS5200-11	Version: earlier than 10.0.2.8
HUAWEI	WS5200-12	Version: earlier than 10.0.2.23
HUAWEI	WS5200-16	Version: earlier than 10.0.2.8
HUAWEI	WS5200-17	Version: earlier than 10.0.2.23
HUAWEI	WS5800-10	Version: earlier than 10.0.3.27
HUAWEI	WS6500-10	Version: earlier than 10.0.2.8
HUAWEI	WS6500-16	Version: earlier than 10.0.2.8

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T10:19:19.496Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200520-01-leakage-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Anne-AL00",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.331(C675E9R1P3T8)"
            }
          ]
        },
        {
          "product": "Berkeley-L09",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.1.1(C675R1)"
            }
          ]
        },
        {
          "product": "CD16-10",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "CD17-10",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "CD17-16",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "CD18-10",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "CD18-16",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "Columbia-TL00B",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.0.0.187(C01E181R1P20T8)"
            }
          ]
        },
        {
          "product": "E6878-370",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.5.1(H610SP10C00)"
            }
          ]
        },
        {
          "product": "HUAWEI P30 lite",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.185(C605E3R1P3)"
            },
            {
              "status": "affected",
              "version": "earlier than 10.0.0.197(C432E8R2P7)"
            }
          ]
        },
        {
          "product": "HUAWEI nova 4e",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.158(C00E64R1P9)"
            }
          ]
        },
        {
          "product": "Honor 10 Lite",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "9.0.1.113(C675E11R1P12)"
            }
          ]
        },
        {
          "product": "LelandP-L22A",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 9.1.0.166(C675E5R1P4T8)"
            }
          ]
        },
        {
          "product": "Marie-AL00AX",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.158(C00E64R1P9)"
            }
          ]
        },
        {
          "product": "Marie-AL00AY",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.158(C00E64R1P9)"
            }
          ]
        },
        {
          "product": "Marie-AL00BX",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.158(C00E64R1P9)"
            }
          ]
        },
        {
          "product": "Marie-L03BX",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.188(C605E5R1P1)"
            }
          ]
        },
        {
          "product": "Marie-L21BX",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.188(C432E4R4P1)"
            },
            {
              "status": "affected",
              "version": "earlier than 10.0.0.188(C461E5R3P1)"
            }
          ]
        },
        {
          "product": "Marie-L22BX",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.188(C636E3R3P1)"
            }
          ]
        },
        {
          "product": "Marie-L23BX",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.0.188(C605E5R1P1)"
            }
          ]
        },
        {
          "product": "TC5200-16",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "WS5200-11",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "WS5200-12",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.23"
            }
          ]
        },
        {
          "product": "WS5200-16",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "WS5200-17",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.23"
            }
          ]
        },
        {
          "product": "WS5800-10",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.3.27"
            }
          ]
        },
        {
          "product": "WS6500-10",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        },
        {
          "product": "WS6500-16",
          "vendor": "HUAWEI",
          "versions": [
            {
              "status": "affected",
              "version": "earlier than 10.0.2.8"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker could exploit this vulnerability to decrypt data. Successful exploitation may leak information randomly. Affected product versions include: Anne-AL00 Versions earlier than 9.1.0.331(C675E9R1P3T8); Berkeley-L09 Versions earlier than 10.0.1.1(C675R1); CD16-10 Versions earlier than 10.0.2.8; CD17-10 Versions earlier than 10.0.2.8; CD17-16 Versions earlier than 10.0.2.8; CD18-10 Versions earlier than 10.0.2.8; CD18-16 Versions earlier than 10.0.2.8; Columbia-TL00B Versions earlier than 9.0.0.187(C01E181R1P20T8); E6878-370 Versions earlier than 10.0.5.1(H610SP10C00); HUAWEI P30 lite Versions earlier than 10.0.0.185(C605E3R1P3), Versions earlier than 10.0.0.197(C432E8R2P7); HUAWEI nova 4e Versions earlier than 10.0.0.158(C00E64R1P9); Honor 10 Lite 9.0.1.113(C675E11R1P12); LelandP-L22A Versions earlier than 9.1.0.166(C675E5R1P4T8); Marie-AL00AX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00AY Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00BX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-L03BX Versions earlier than 10.0.0.188(C605E5R1P1); Marie-L21BX Versions earlier than 10.0.0.188(C432E4R4P1), Versions earlier than 10.0.0.188(C461E5R3P1); Marie-L22BX Versions earlier than 10.0.0.188(C636E3R3P1); Marie-L23BX Versions earlier than 10.0.0.188(C605E5R1P1); TC5200-16 Versions earlier than 10.0.2.8; WS5200-11 Versions earlier than 10.0.2.8; WS5200-12 Versions earlier than 10.0.2.23; WS5200-16 Versions earlier than 10.0.2.8; WS5200-17 Versions earlier than 10.0.2.23; WS5800-10 Versions earlier than 10.0.3.27; WS6500-10 Versions earlier than 10.0.2.8; WS6500-16 Versions earlier than 10.0.2.8"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Information Leakage",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-05-29T22:23:46",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200520-01-leakage-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2020-9069",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Anne-AL00",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.331(C675E9R1P3T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Berkeley-L09",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.1.1(C675R1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "CD16-10",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "CD17-10",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "CD17-16",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "CD18-10",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "CD18-16",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Columbia-TL00B",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.0.0.187(C01E181R1P20T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "E6878-370",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.5.1(H610SP10C00)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI P30 lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.185(C605E3R1P3)"
                          },
                          {
                            "version_value": "earlier than 10.0.0.197(C432E8R2P7)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "HUAWEI nova 4e",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.158(C00E64R1P9)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Honor 10 Lite",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "9.0.1.113(C675E11R1P12)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "LelandP-L22A",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 9.1.0.166(C675E5R1P4T8)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Marie-AL00AX",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.158(C00E64R1P9)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Marie-AL00AY",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.158(C00E64R1P9)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Marie-AL00BX",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.158(C00E64R1P9)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Marie-L03BX",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.188(C605E5R1P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Marie-L21BX",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.188(C432E4R4P1)"
                          },
                          {
                            "version_value": "earlier than 10.0.0.188(C461E5R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Marie-L22BX",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.188(C636E3R3P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Marie-L23BX",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.0.188(C605E5R1P1)"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "TC5200-16",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WS5200-11",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WS5200-12",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.23"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WS5200-16",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WS5200-17",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.23"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WS5800-10",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.3.27"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WS6500-10",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "WS6500-16",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "earlier than 10.0.2.8"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "HUAWEI"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker could exploit this vulnerability to decrypt data. Successful exploitation may leak information randomly. Affected product versions include: Anne-AL00 Versions earlier than 9.1.0.331(C675E9R1P3T8); Berkeley-L09 Versions earlier than 10.0.1.1(C675R1); CD16-10 Versions earlier than 10.0.2.8; CD17-10 Versions earlier than 10.0.2.8; CD17-16 Versions earlier than 10.0.2.8; CD18-10 Versions earlier than 10.0.2.8; CD18-16 Versions earlier than 10.0.2.8; Columbia-TL00B Versions earlier than 9.0.0.187(C01E181R1P20T8); E6878-370 Versions earlier than 10.0.5.1(H610SP10C00); HUAWEI P30 lite Versions earlier than 10.0.0.185(C605E3R1P3), Versions earlier than 10.0.0.197(C432E8R2P7); HUAWEI nova 4e Versions earlier than 10.0.0.158(C00E64R1P9); Honor 10 Lite 9.0.1.113(C675E11R1P12); LelandP-L22A Versions earlier than 9.1.0.166(C675E5R1P4T8); Marie-AL00AX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00AY Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00BX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-L03BX Versions earlier than 10.0.0.188(C605E5R1P1); Marie-L21BX Versions earlier than 10.0.0.188(C432E4R4P1), Versions earlier than 10.0.0.188(C461E5R3P1); Marie-L22BX Versions earlier than 10.0.0.188(C636E3R3P1); Marie-L23BX Versions earlier than 10.0.0.188(C605E5R1P1); TC5200-16 Versions earlier than 10.0.2.8; WS5200-11 Versions earlier than 10.0.2.8; WS5200-12 Versions earlier than 10.0.2.23; WS5200-16 Versions earlier than 10.0.2.8; WS5200-17 Versions earlier than 10.0.2.23; WS5800-10 Versions earlier than 10.0.3.27; WS6500-10 Versions earlier than 10.0.2.8; WS6500-16 Versions earlier than 10.0.2.8"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Information Leakage"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200520-01-leakage-en",
              "refsource": "CONFIRM",
              "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200520-01-leakage-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2020-9069",
    "datePublished": "2020-05-21T14:19:31",
    "dateReserved": "2020-02-18T00:00:00",
    "dateUpdated": "2024-08-04T10:19:19.496Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted