VYPR

Huawei Pay

by Huawei

CVEs (8)

  • CVE-2020-37220HigMay 13, 2026
    risk 0.49cvss 7.5epss 0.00

    Huawei HG630 V2 router contains an authentication bypass vulnerability that allows unauthenticated attackers to obtain administrative access by retrieving the device serial number. Attackers can query the /api/system/deviceinfo endpoint without authentication to extract the…

  • CVE-2017-2704HigNov 22, 2017
    risk 0.49cvss 7.5epss 0.01

    Smarthome 1.0.2.364 and earlier versions,HiAPP 7.3.0.303 and earlier versions,HwParentControl 2.0.0 and earlier versions,HwParentControlParent 5.1.0.12 and earlier versions,Crowdtest 1.5.3 and earlier versions,HiWallet 8.0.0.301 and earlier versions,Huawei Pay 8.0.0.300 and…

  • CVE-2020-9081Dec 27, 2024
    risk 0.00cvss epss 0.00

    There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) …

  • CVE-2020-9247Dec 7, 2020
    risk 0.00cvss epss 0.01

    There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious…

  • CVE-2020-1798May 29, 2020
    risk 0.00cvss epss 0.00

    HUAWEI P30 smartphones with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. A logic error occurs when handling NFC work, an attacker should establish a NFC connection to the target phone, and then do a series of operations on the…

  • CVE-2019-5303Apr 27, 2020
    risk 0.00cvss epss 0.00

    There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…

  • CVE-2019-5302Apr 27, 2020
    risk 0.00cvss epss 0.00

    There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful…

  • CVE-2020-1812Feb 18, 2020
    risk 0.00cvss epss 0.01

    HUAWEI P30 smartphones with versions earlier than 10.0.0.173(C00E73R1P11) have an improper authentication vulnerability. Due to improperly validation of certain application, an attacker should trick the user into installing a malicious application to exploit this vulnerability.…