N/A

Huawei smartphones HUAWEI Y9 2019 and Honor View 20 have a denial of service vulnerability. Due to insufficient input validation of specific value when parsing the messages, an attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices to exploit this vulnerability. Successful exploit may cause an infinite loop and the device to reboot.

N/A

N/A

多款Huawei产品输入验证错误漏洞

Huawei Mate 20等都是中国华为（Huawei）公司的一款智能手机。 多款Huawei产品中存在拒绝服务漏洞，该漏洞源于程序没有进行充分的输入验证。攻击者可通过从伪基站向受影响设备发送特制TD-SCDMA消息利用该漏洞导致死循环，引发设备重启。以下产品及版本受到影响：Huawei Y9 2019 8.2.0.160(C185R2P2)版本，8.2.0.162(C605)版本，8.2.0.163(C605)版本；Honor View 20 9.0.1.169(C636E1R4P1)版本，9.0.1

N/A

N/A