Login Sign Up

CVE-2020-9261

7.8 HIGH

📋 TL;DR

A type confusion vulnerability in HUAWEI Mate 30 smartphones allows attackers to execute arbitrary code by tricking users into installing and running a malicious application. This affects HUAWEI Mate 30 devices running versions earlier than 10.1.0.150(C00E136R5P3). Successful exploitation could compromise device security and user data.

💻 Affected Systems

Products:
  • HUAWEI Mate 30
Versions: Versions earlier than 10.1.0.150(C00E136R5P3)
Operating Systems: Android-based EMUI
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects HUAWEI Mate 30 smartphones, requires user interaction to install malicious application

📦 What is this software?

Mate 30 Firmware by Huawei

View all CVEs affecting Mate 30 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full device compromise allowing attacker to execute arbitrary code with system privileges, access sensitive data, install persistent malware, or use device as part of botnet.

🟠

Likely Case

Malicious app gains elevated privileges to access sensitive user data, install additional malware, or perform unauthorized actions on the device.

🟢

If Mitigated

Attack fails due to user not installing malicious app, device being patched, or security controls preventing app execution.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires social engineering to trick user into installing malicious application, then execution triggers the vulnerability

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 10.1.0.150(C00E136R5P3) or later

Vendor Advisory: https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-05-smartphone-en

Restart Required: Yes

Instructions:

1. Go to Settings > System & updates > Software update. 2. Check for updates. 3. Install available update to version 10.1.0.150(C00E136R5P3) or later. 4. Restart device when prompted.

🔧 Temporary Workarounds

Restrict app installations

android

Only install apps from official Huawei AppGallery or trusted sources, disable unknown sources installation

Settings > Security > More settings > Install apps from external sources > Disable for all apps

Enable Play Protect

android

Enable Google Play Protect to scan apps for malicious behavior

Google Play Store > Menu > Play Protect > Turn on Scan apps with Play Protect

🧯 If You Can't Patch

  • Only install applications from official Huawei AppGallery or trusted sources
  • Enable device encryption and use strong authentication methods

🔍 How to Verify

Check if Vulnerable:

Check device version in Settings > About phone > Build number

Check Version:

Settings > About phone > Build number

Verify Fix Applied:

Verify version is 10.1.0.150(C00E136R5P3) or higher in Settings > About phone

📡 Detection & Monitoring

Log Indicators:

  • Unusual app installation events
  • Process execution with unexpected privileges
  • Crash logs from system services

Network Indicators:

  • Unexpected network connections from system processes
  • Communication with known malicious domains

SIEM Query:

Device logs showing app installation from unknown sources followed by privilege escalation attempts

📊 Metadata

CVE ID: CVE-2020-9261
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-843
Published: July 6, 2020
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2020-9261, you might also want to check these:

CVE-2025-47151 9.8

A type confusion vulnerability in Entr'ouvert Lasso's SAML parsing allows remote code execution when...

Same vulnerability type (CWE-843)
CVE-2025-65570 9.8

A type confusion vulnerability in jsish 2.0 allows incorrect control flow during execution of the OP...

Same vulnerability type (CWE-843)
CVE-2016-1000005 9.8

This CVE involves a type confusion vulnerability in HHVM's mcrypt_get_block_size function where the ...

Same vulnerability type (CWE-843)