VYPR

Smartphones

by Huawei

CVEs (24)

  • CVE-2019-5276HigDec 23, 2019
    risk 0.57cvss 8.8epss 0.00

    Huawei smart phones with earlier versions than ELLE-AL00B 9.1.0.222(C00E220R2P1) have a buffer overflow vulnerability. An attacker may intercept and tamper with the packet in the local area network (LAN) to exploit this vulnerability. Successful exploitation may cause the…

  • CVE-2019-5233HigNov 13, 2019
    risk 0.57cvss 8.8epss 0.01

    Huawei smartphones with versions earlier than Taurus-AL00B 10.0.0.41(SP2C00E41R3P2) have an improper authentication vulnerability. Successful exploitation may cause the attacker to access specific components.

  • CVE-2017-17224HigNov 12, 2019
    risk 0.57cvss 8.8epss 0.00

    Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the…

  • CVE-2019-5225HigNov 29, 2019
    risk 0.51cvss 7.8epss 0.01

    P30, Mate 20, P30 Pro smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21), versions earlier than Hima-AL00B 9.1.0.135(C00E200R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R1P12) have a buffer overflow vulnerability on several , the…

  • CVE-2019-5288HigNov 13, 2019
    risk 0.51cvss 7.8epss 0.01

    P30 smart phones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1) have an integer overflow vulnerability due to insufficient check on specific parameters. An attacker tricks the user into installing a malicious application, obtains the root permission and constructs…

  • CVE-2019-5287HigNov 13, 2019
    risk 0.51cvss 7.8epss 0.01

    P30 smart phones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1) have an integer overflow vulnerability due to insufficient check on specific parameters. An attacker tricks the user into installing a malicious application, obtains the root permission and constructs…

  • CVE-2021-22319HigFeb 25, 2022
    risk 0.49cvss 7.5epss 0.01

    There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause integer overflows.

  • CVE-2021-37133HigJan 3, 2022
    risk 0.49cvss 7.5epss 0.01

    There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.

  • CVE-2021-22437HigFeb 25, 2022
    risk 0.46cvss 7.0epss 0.00

    There is a software integer overflow leading to a TOCTOU condition in smartphones. Successful exploitation of this vulnerability may cause random address access.

  • CVE-2018-7910MedNov 13, 2018
    risk 0.44cvss 6.8epss 0.00

    Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains…

  • CVE-2019-5284MedJun 4, 2019
    risk 0.42cvss 6.5epss 0.01

    There is a DoS vulnerability in RTSP module of Leland-AL00A Huawei smart phones versions earlier than Leland-AL00A 9.1.0.111(C00E111R2P10T8). Remote attackers could trick the user into opening a malformed RTSP media stream to exploit this vulnerability. Successful exploit could…

  • CVE-2018-7961MedNov 27, 2018
    risk 0.42cvss 6.5epss 0.01

    There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause…

  • CVE-2020-9253MedDec 27, 2024
    risk 0.41cvss 6.3epss 0.00

    There is a stack overflow vulnerability in some Huawei smart phone. An attacker can craft specific packet to exploit this vulnerability. Due to insufficient verification, this could be exploited to tamper with the information to affect the availability. (Vulnerability ID:…

  • CVE-2020-9119MedDec 24, 2020
    risk 0.40cvss 6.2epss 0.00

    There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.

  • CVE-2019-5246MedNov 13, 2019
    risk 0.40cvss 6.2epss 0.00

    Smartphones with software of ELLE-AL00B 9.1.0.109(C00E106R1P21), 9.1.0.113(C00E110R1P21), 9.1.0.125(C00E120R1P21), 9.1.0.135(C00E130R1P21), 9.1.0.153(C00E150R1P21), 9.1.0.155(C00E150R1P21), 9.1.0.162(C00E160R2P1) have an insufficient verification vulnerability. The system does…

  • CVE-2019-5251MedDec 13, 2019
    risk 0.36cvss 5.5epss 0.01

    There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could…

  • CVE-2019-5235MedDec 14, 2019
    risk 0.35cvss 5.3epss 0.01

    Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.

  • CVE-2019-5303MedApr 27, 2020
    risk 0.34cvss 5.3epss 0.00

    There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…

  • CVE-2019-5302MedApr 27, 2020
    risk 0.34cvss 5.3epss 0.00

    There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…

  • CVE-2019-19412MedJun 8, 2020
    risk 0.30cvss 4.6epss 0.00

    Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party…

Page 1 of 2