VYPR

Mate 30

by Huawei

CVEs (12)

  • CVE-2020-9263HigOct 19, 2020
    risk 0.51cvss 7.8epss 0.01

    HUAWEI Mate 30 versions earlier than 10.1.0.150(C00E136R5P3) and HUAWEI P30 version earlier than 10.1.0.160(C00E160R2P11) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the attacker should trick…

  • CVE-2020-9262HigJul 6, 2020
    risk 0.51cvss 7.8epss 0.01

    HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the attacker should trick the user into running a crafted application with high…

  • CVE-2020-9261HigJul 6, 2020
    risk 0.51cvss 7.8epss 0.01

    HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a type confusion vulnerability. The system does not properly check and transform the type of certain variable, the attacker tricks the user into installing then running a crafted application, successful…

  • CVE-2021-22301MedFeb 6, 2021
    risk 0.44cvss 6.7epss 0.00

    Mate 30 10.0.0.203(C00E201R7P2) have a buffer overflow vulnerability. After obtaining the root permission, an attacker can exploit the vulnerability to cause buffer overflow.

  • CVE-2020-9129MedNov 13, 2020
    risk 0.44cvss 6.7epss 0.00

    HUAWEI Mate 30 versions earlier than 10.1.0.159(C00E159R7P2) have a vulnerability of improper buffer operation. Due to improper restrictions, local attackers with high privileges can exploit the vulnerability to cause system heap overflow.

  • CVE-2020-1835MedJun 18, 2020
    risk 0.42cvss 6.5epss 0.00

    HUAWEI Mate 30 with versions earlier than 10.1.0.126(C00E125R5P3) have an information disclosure vulnerability. A logic judgment error occurs when the system handling Bluetooth connections, an attacker could craft as an authenticated Bluetooth peer to launch the attack.…

  • CVE-2020-1839MedJul 6, 2020
    risk 0.41cvss 6.3epss 0.00

    HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a race condition vulnerability. There is a timing window exists in which certain pointer members can be modified by another process that is operating concurrently, an attacker should trick the user into…

  • CVE-2021-22364MedMay 27, 2021
    risk 0.36cvss 5.5epss 0.00

    There is a denial of service vulnerability in the versions 10.1.0.126(C00E125R5P3) of HUAWEI Mate 30 and 10.1.0.152(C00E136R7P2) of HUAWEI Mate 30 (5G) . A module does not verify certain parameters sufficiently and it leads to some exceptions. Successful exploit could cause a…

  • CVE-2020-9243MedAug 10, 2020
    risk 0.36cvss 5.5epss 0.00

    HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a denial of service vulnerability. The system does not properly limit the depth of recursion, an attacker should trick the user installing and execute a malicious application. Successful exploit could cause a…

  • CVE-2020-1801MedApr 10, 2020
    risk 0.36cvss 5.5epss 0.01

    There is an improper authentication vulnerability in several smartphones. Certain function interface in the system does not sufficiently validate the caller's identity in certain share scenario, successful exploit could cause information disclosure. Affected product versions…

  • CVE-2021-22306MedFeb 6, 2021
    risk 0.30cvss 4.6epss 0.00

    There is an out-of-bound read vulnerability in Mate 30 10.0.0.182(C00E180R6P2). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause out-of-bound,…

  • CVE-2021-22305LowFeb 6, 2021
    risk 0.21cvss 3.3epss 0.00

    There is a buffer overflow vulnerability in Mate 30 10.1.0.126(C00E125R5P3). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause buffer overflow,…

VYPR — Vulnerability Intelligence