VYPR

Mate 9 Pro

by Huawei

CVEs (8)

  • CVE-2017-17225HigMar 9, 2018
    risk 0.57cvss 8.8epss 0.01

    The Near Field Communication (NFC) module in Huawei Mate 9 Pro mobile phones with the versions before LON-AL00B 8.0.0.340a(C00) has a buffer overflow vulnerability due to the lack of input validation. An attacker may use an NFC card reader or another device to inject malicious…

  • CVE-2017-17320HigMar 20, 2018
    risk 0.51cvss 7.8epss 0.01

    Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root…

  • CVE-2017-17324HigMar 9, 2018
    risk 0.51cvss 7.8epss 0.01

    Huawei Mate 9 Pro smartphones with software LON-AL00BC00B139D; LON-AL00BC00B229 have an integer overflow vulnerability. The camera driver does not validate the external input parameters and causes an integer overflow, which in the after processing results in a buffer overflow.…

  • CVE-2017-15316HigDec 22, 2017
    risk 0.51cvss 7.8epss 0.01

    The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B 8.0.0.334(C00) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application,…

  • CVE-2017-17175MedJul 2, 2018
    risk 0.42cvss 6.5epss 0.00

    Short Message Service (SMS) module of Mate 9 Pro Huawei smart phones with the versions before LON-AL00B 8.0.0.354(C00) has a Denial of Service (DoS) vulnerability. An unauthenticated attacker may set up a pseudo base station, and send special malware text message to the phone,…

  • CVE-2017-17279MedMar 9, 2018
    risk 0.36cvss 5.5epss 0.01

    The soundtrigger module in Huawei Mate 9 Pro smart phones with software of the versions before LON-AL00B 8.0.0.343(C00) has an authentication bypass vulnerability due to the improper design of the module. An attacker tricks a user into installing a malicious application, and the…

  • CVE-2017-17139MedMar 5, 2018
    risk 0.36cvss 5.5epss 0.01

    Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334(C00); the versions before LON-AL00B 8.0.0.334(C00) have a information leak vulnerability in the date service proxy implementation. An attacker may trick a user into installing a…

  • CVE-2017-15347MedFeb 15, 2018
    risk 0.36cvss 5.5epss 0.01

    Huawei Mate 9 Pro mobile phones with software of versions earlier than LON-AL00BC00B235 have a use after free (UAF) vulnerability. An attacker tricks a user into installing a malicious application, and the application can riggers access memory after free it. A local attacker may…