VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 19, 2020· Updated Aug 4, 2024

CVE-2020-9263

CVE-2020-9263

Description

HUAWEI Mate 30 versions earlier than 10.1.0.150(C00E136R5P3) and HUAWEI P30 version earlier than 10.1.0.160(C00E160R2P11) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the attacker should trick the user into running a crafted application with common privilege, successful exploit could cause code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A use-after-free vulnerability in Huawei Mate 30 and P30 smartphones allows code execution if a user runs a crafted app.

Vulnerability

CVE-2020-9263 is a use-after-free vulnerability in HUAWEI Mate 30 (versions earlier than 10.1.0.150(C00E136R5P3)) and HUAWEI P30 (versions earlier than 10.1.0.160(C00E160R2P11)). The system references memory after it has been freed, leading to a potential memory corruption issue [1].

Exploitation

The attacker must trick the user into running a crafted application with common (non-root) privileges [1]. No other network position or authentication is required beyond local app execution. The specific sequence is not detailed in the available references.

Impact

Successful exploitation causes code execution on the device. The attacker gains the same privilege level as the application, which is common (user-level) [1].

Mitigation

Huawei has released software updates to fix this vulnerability. The resolved versions are 10.1.0.150(C00E136R5P3) for Mate 30 and 10.1.0.160(C00E160R2P11) for P30 [1]. Users should update their devices to these or later versions.

References
  1. Security Advisory - Use After Free Vulnerability in Several Smartphones

AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

3
  • HUAWEI/Mate 30description
  • Huawei/P30llm-fuzzy
    Range: <10.1.0.160(C00E160R2P11)
  • Huawei/Mate 30llm-fuzzy
    Range: <10.1.0.150(C00E136R5P3)

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.