Vendor CVEs
Huawei
All CVEs
2,254 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-68959 | 0.00 | — | 0.00 | Jan 14, 2026 | Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68970 | 0.00 | — | 0.00 | Jan 14, 2026 | Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68963 | 0.00 | — | 0.00 | Jan 14, 2026 | Man-in-the-middle attack vulnerability in the Clone module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68967 | 0.00 | — | 0.00 | Jan 14, 2026 | Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68966 | 0.00 | — | 0.00 | Jan 14, 2026 | Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68965 | 0.00 | — | 0.00 | Jan 14, 2026 | Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-68964 | 0.00 | — | 0.00 | Jan 14, 2026 | Data verification vulnerability in the HiView module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68969 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68968 | 0.00 | — | 0.00 | Jan 14, 2026 | Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this vulnerability may affect the input function. | |||
| CVE-2025-68962 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68961 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68960 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the video framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68958 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68957 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68956 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-68955 | 0.00 | — | 0.00 | Jan 14, 2026 | Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-63414 | 0.00 | — | 0.02 | Dec 16, 2025 | A Path Traversal vulnerability in the Allsky WebUI version v2024.12.06_06 allows an unauthenticated remote attacker to achieve arbitrary command execution. By sending a crafted HTTP request to the /html/execute.php endpoint with a malicious payload in the id parameter, an… | |||
| CVE-2025-66330 | 0.00 | — | 0.00 | Dec 8, 2025 | App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-66325 | 0.00 | — | 0.00 | Dec 8, 2025 | Permission control vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58279 | 0.00 | — | 0.00 | Dec 8, 2025 | Permission control vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-66334 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66333 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66332 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66331 | 0.00 | — | 0.00 | Dec 8, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66328 | 0.00 | — | 0.00 | Dec 8, 2025 | Multi-thread race condition vulnerability in the network management module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66327 | 0.00 | — | 0.00 | Dec 8, 2025 | Race condition vulnerability in the network module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-66326 | 0.00 | — | 0.00 | Dec 8, 2025 | Race condition vulnerability in the audio module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66324 | 0.00 | — | 0.00 | Dec 8, 2025 | Input verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affect app data integrity. | |||
| CVE-2025-66323 | 0.00 | — | 0.00 | Dec 8, 2025 | Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66322 | 0.00 | — | 0.00 | Dec 8, 2025 | Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66321 | 0.00 | — | 0.00 | Dec 8, 2025 | Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-66320 | 0.00 | — | 0.00 | Dec 8, 2025 | Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-64312 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58311 | 0.00 | — | 0.00 | Nov 28, 2025 | UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | |||
| CVE-2025-58308 | 0.00 | — | 0.00 | Nov 28, 2025 | Vulnerability of improper criterion security check in the call module. Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. | |||
| CVE-2025-58305 | 0.00 | — | 0.00 | Nov 28, 2025 | Identity authentication bypass vulnerability in the Gallery app. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58304 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58302 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58294 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-64313 | 0.00 | — | 0.00 | Nov 28, 2025 | Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-64311 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58315 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the Wi-Fi module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58314 | 0.00 | — | 0.00 | Nov 28, 2025 | Vulnerability of accessing invalid memory in the component driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | |||
| CVE-2025-58312 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the App Lock module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-58310 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the distributed component. Impact: Successful exploitation of this vulnerability may affect service confidentiality. | |||
| CVE-2025-58309 | 0.00 | — | 0.00 | Nov 28, 2025 | Permission control vulnerability in the startup recovery module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. | |||
| CVE-2025-58307 | 0.00 | — | 0.00 | Nov 28, 2025 | UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-58316 | 0.00 | — | 0.00 | Nov 28, 2025 | DoS vulnerability in the video-related system service module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-58303 | 0.00 | — | 0.00 | Nov 28, 2025 | UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability. | |||
| CVE-2025-64315 | 0.00 | — | 0.00 | Nov 28, 2025 | Configuration defect vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect app data confidentiality and integrity. |
- CVE-2025-68959Jan 14, 2026risk 0.00cvss —epss 0.00
Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68970Jan 14, 2026risk 0.00cvss —epss 0.00
Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68963Jan 14, 2026risk 0.00cvss —epss 0.00
Man-in-the-middle attack vulnerability in the Clone module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68967Jan 14, 2026risk 0.00cvss —epss 0.00
Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68966Jan 14, 2026risk 0.00cvss —epss 0.00
Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68965Jan 14, 2026risk 0.00cvss —epss 0.00
Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-68964Jan 14, 2026risk 0.00cvss —epss 0.00
Data verification vulnerability in the HiView module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68969Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68968Jan 14, 2026risk 0.00cvss —epss 0.00
Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this vulnerability may affect the input function.
- CVE-2025-68962Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68961Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68960Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the video framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68958Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68957Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68956Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-68955Jan 14, 2026risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-63414Dec 16, 2025risk 0.00cvss —epss 0.02
A Path Traversal vulnerability in the Allsky WebUI version v2024.12.06_06 allows an unauthenticated remote attacker to achieve arbitrary command execution. By sending a crafted HTTP request to the /html/execute.php endpoint with a malicious payload in the id parameter, an…
- CVE-2025-66330Dec 8, 2025risk 0.00cvss —epss 0.00
App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-66325Dec 8, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58279Dec 8, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-66334Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66333Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66332Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66331Dec 8, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66328Dec 8, 2025risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the network management module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66327Dec 8, 2025risk 0.00cvss —epss 0.00
Race condition vulnerability in the network module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-66326Dec 8, 2025risk 0.00cvss —epss 0.00
Race condition vulnerability in the audio module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66324Dec 8, 2025risk 0.00cvss —epss 0.00
Input verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affect app data integrity.
- CVE-2025-66323Dec 8, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66322Dec 8, 2025risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66321Dec 8, 2025risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-66320Dec 8, 2025risk 0.00cvss —epss 0.00
Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-64312Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58311Nov 28, 2025risk 0.00cvss —epss 0.00
UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- CVE-2025-58308Nov 28, 2025risk 0.00cvss —epss 0.00
Vulnerability of improper criterion security check in the call module. Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.
- CVE-2025-58305Nov 28, 2025risk 0.00cvss —epss 0.00
Identity authentication bypass vulnerability in the Gallery app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58304Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58302Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58294Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-64313Nov 28, 2025risk 0.00cvss —epss 0.00
Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-64311Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58315Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the Wi-Fi module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58314Nov 28, 2025risk 0.00cvss —epss 0.00
Vulnerability of accessing invalid memory in the component driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- CVE-2025-58312Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the App Lock module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-58310Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the distributed component. Impact: Successful exploitation of this vulnerability may affect service confidentiality.
- CVE-2025-58309Nov 28, 2025risk 0.00cvss —epss 0.00
Permission control vulnerability in the startup recovery module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.
- CVE-2025-58307Nov 28, 2025risk 0.00cvss —epss 0.00
UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-58316Nov 28, 2025risk 0.00cvss —epss 0.00
DoS vulnerability in the video-related system service module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-58303Nov 28, 2025risk 0.00cvss —epss 0.00
UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.
- CVE-2025-64315Nov 28, 2025risk 0.00cvss —epss 0.00
Configuration defect vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect app data confidentiality and integrity.
Page 14 of 46