Sign-up

ID

VAR-202004-1921


CVE

CVE-2020-7958


TITLE

OnePlus 7 Pro information disclosure vulnerability

Trust: 1.2

sources: CNVD: CNVD-2020-25976 // CNNVD: CNNVD-202004-909

DESCRIPTION

An issue was discovered on OnePlus 7 Pro devices before 10.0.3.GM21BA. The firmware was found to contain functionality that allows a privileged user (root) in the Rich Execution Environment (REE) to obtain bitmap images from the fingerprint sensor because of Leftover Debug Code. The issue is that the Trusted Application (TA) supports an extended number of commands beyond what is needed to implement a fingerprint authentication system compatible with Android. An attacker who is in the position to send commands to the TA (for example, the root user) is able to send a sequence of these commands that will result in the TA sending a raw fingerprint image to the REE. This means that the Trusted Execution Environment (TEE) no longer protects identifiable fingerprint data from the REE. OnePlus 7 Pro The device contains a hard-coded information disclosure vulnerability.Information may be obtained. OnePlus 7 Pro is a smartphone of China OnePlus Technology (OnePlus). OnePlus 7 Pro 10.0.3.GM21BA has security vulnerabilities in previous versions. Attackers can use this vulnerability to obtain fingerprint images (bitmaps) from the fingerprint sensor

Trust: 2.16

sources: NVD: CVE-2020-7958 // JVNDB: JVNDB-2020-004527 // CNVD: CNVD-2020-25976

IOT TAXONOMY

category:['IoT']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2020-25976

AFFECTED PRODUCTS

vendor:oneplusmodel:7 proscope:ltversion:10.0.3.gm21ba

Trust: 1.0

vendor:oneplusmodel:7 proscope:eqversion:10.0.3.gm21ba

Trust: 0.8

vendor:oneplusmodel:pro <10.0.3.gm21bascope:eqversion:7

Trust: 0.6

sources: CNVD: CNVD-2020-25976 // JVNDB: JVNDB-2020-004527 // NVD: CVE-2020-7958

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2020-7958
value: MEDIUM

Trust: 1.0

NVD: JVNDB-2020-004527
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2020-25976
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-202004-909
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2020-7958
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

NVD: JVNDB-2020-004527
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

CNVD: CNVD-2020-25976
severity: MEDIUM
baseScore: 4.3
vectorString: AV:L/AC:L/AU:M/C:C/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: MULTIPLE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 2.5
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2020-7958
baseSeverity: MEDIUM
baseScore: 6.0
vectorString: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.5
impactScore: 4.0
version: 3.1

Trust: 1.0

NVD: JVNDB-2020-004527
baseSeverity: MEDIUM
baseScore: 6.0
vectorString: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: HIGH
userInteraction: NONE
scope: CHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: CNVD: CNVD-2020-25976 // JVNDB: JVNDB-2020-004527 // CNNVD: CNNVD-202004-909 // NVD: CVE-2020-7958

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

problemtype:CWE-200

Trust: 0.8

sources: JVNDB: JVNDB-2020-004527 // NVD: CVE-2020-7958

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202004-909

TYPE

information disclosure

Trust: 0.6

sources: CNNVD: CNNVD-202004-909

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2020-004527

PATCH
title:Top Pageurl:https://www.oneplus.com/
Trust: 0.8
title:Patch for OnePlus 7 Pro information disclosure vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/216085
Trust: 0.6
title:OnePlus 7 Pro Repair measures for information disclosure vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=116842
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2020-25976 // 
            
            
            
            JVNDB: JVNDB-2020-004527 // 
            
            
            
            CNNVD: CNNVD-202004-909

EXTERNAL IDS
db:NVDid:CVE-2020-7958
Trust: 3.0
db:JVNDBid:JVNDB-2020-004527
Trust: 0.8
db:CNVDid:CNVD-2020-25976
Trust: 0.6
db:CNNVDid:CNNVD-202004-909
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2020-25976 // 
            
            
            
            JVNDB: JVNDB-2020-004527 // 
            
            
            
            CNNVD: CNNVD-202004-909 // 
            
            
            
            NVD: CVE-2020-7958

REFERENCES
url:https://www.synopsys.com/blogs/software-security/cve-2020-7958/
Trust: 2.4
url:https://nvd.nist.gov/vuln/detail/cve-2020-7958
Trust: 1.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2020-7958
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2020-004527 // 
            
            
            
            CNNVD: CNNVD-202004-909 // 
            
            
            
            NVD: CVE-2020-7958

SOURCES
db:CNVDid:CNVD-2020-25976
db:JVNDBid:JVNDB-2020-004527
db:CNNVDid:CNNVD-202004-909
db:NVDid:CVE-2020-7958

LAST UPDATE DATE
2024-11-23T22:41:06.222000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2020-25976date:2020-04-30T00:00:00
db:JVNDBid:JVNDB-2020-004527date:2020-05-20T00:00:00
db:CNNVDid:CNNVD-202004-909date:2020-04-26T00:00:00
db:NVDid:CVE-2020-7958date:2024-11-21T05:38:05.530

SOURCES RELEASE DATE
db:CNVDid:CNVD-2020-25976date:2020-04-30T00:00:00
db:JVNDBid:JVNDB-2020-004527date:2020-05-20T00:00:00
db:CNNVDid:CNNVD-202004-909date:2020-04-14T00:00:00
db:NVDid:CVE-2020-7958date:2020-04-14T16:15:13.297