Path Traversal Vulnerability in HUAWEI Mate 20, Mate 20 X, Mate 20 RS, and Honor Magic2 Smartphones

Path Traversal Vulnerability in HUAWEI Mate 20, Mate 20 X, Mate 20 RS, and Honor Magic2 Smartphones

CVE-2020-9252 · LOW Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

HUAWEI Mate 20 versions earlier than 10.1.0.160(C00E160R3P8), HUAWEI Mate 20 X versions earlier than 10.1.0.135(C00E135R2P8), HUAWEI Mate 20 RS versions earlier than 10.1.0.160(C786E160R3P8), and Honor Magic2 smartphones versions earlier than 10.1.0.160(C00E160R2P11) have a path traversal vulnerability. The system does not sufficiently validate certain pathname from certain process, successful exploit could allow the attacker write files to a crafted path.

Learn more about our Web Application Penetration Testing UK.