VYPR

Vendor CVEs

Huawei

All CVEs

2,254 total · sorted by risk
  • CVE-2021-22438Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause malicious code to be executed.

  • CVE-2021-22435Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is a Configuration Defect Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service integrity and availability.

  • CVE-2021-22428Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Incomplete Cleanup Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to authentication bypass.

  • CVE-2021-22427Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is a Heap-based Buffer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to authentication bypass.

  • CVE-2021-22415Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause kernel exceptions with the code.

  • CVE-2021-22414Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is a Memory Buffer Errors Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

  • CVE-2021-22413Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

  • CVE-2021-22412Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause random kernel address access.

  • CVE-2021-22392Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause verification bypass and directions to abnormal addresses.

  • CVE-2021-22391Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

  • CVE-2021-22390Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.

  • CVE-2021-22389Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is a Permission Control Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.

  • CVE-2021-22388Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.

  • CVE-2021-22387Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to remotely execute commands.

  • CVE-2021-22384Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Information Disclosure Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to authentication bypass.

  • CVE-2021-22379Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Integer Underflow (Wrap or Wraparound) Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause DoS of Samgr.

  • CVE-2021-22381Aug 2, 2021
    risk 0.00cvss epss 0.01

    There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause an infinite loop in DoS.

  • CVE-2021-22397Aug 2, 2021
    risk 0.00cvss epss 0.00

    There is a privilege escalation vulnerability in Huawei ManageOne 8.0.0. External parameters of some files are lack of verification when they are be called. Attackers can exploit this vulnerability by performing these files to cause privilege escalation attack. This can…

  • CVE-2021-22398Aug 2, 2021
    risk 0.00cvss epss 0.00

    There is a logic error vulnerability in several smartphones. The software does not properly restrict certain operation when the Digital Balance function is on. Successful exploit could allow the attacker to bypass the Digital Balance limit after a series of operations. Affected…

  • CVE-2021-22396Aug 2, 2021
    risk 0.00cvss epss 0.00

    There is a privilege escalation vulnerability in some Huawei products. Due to improper privilege management, a local attacker with common privilege may access some specific files in the affected products. Successful exploit will cause privilege escalation.Affected product…

  • CVE-2021-22318Jul 14, 2021
    risk 0.00cvss epss 0.00

    A component of the HarmonyOS 2.0 has a Null Pointer Dereference Vulnerability. Local attackers may exploit this vulnerability to cause system denial of service.

  • CVE-2021-22440Jul 13, 2021
    risk 0.00cvss epss 0.00

    There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software…

  • CVE-2021-22399Jul 13, 2021
    risk 0.00cvss epss 0.00

    The Bluetooth function of some Huawei smartphones has a DoS vulnerability. Attackers can install third-party apps to send specific broadcasts, causing the Bluetooth module to crash. This vulnerability is successfully exploited to cause the Bluetooth function to become abnormal.…

  • CVE-2020-9158Jul 1, 2021
    risk 0.00cvss epss 0.01

    There is a Missing Cryptographic Step vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause DoS of Samgr.

  • CVE-2021-22349Jun 30, 2021
    risk 0.00cvss epss 0.01

    There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of insufficient input verification may cause the system to restart.

  • CVE-2021-22323Jun 30, 2021
    risk 0.00cvss epss 0.01

    There is an Integer Overflow Vulnerability in Huawei Smartphone. Successful exploitation of these vulnerabilities may escalate the permission to that of the root user.

  • CVE-2021-22376Jun 30, 2021
    risk 0.00cvss epss 0.00

    A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may exploit this vulnerability to bypass user restrictions.

  • CVE-2021-22326Jun 30, 2021
    risk 0.00cvss epss 0.00

    A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability.

  • CVE-2021-22380Jun 30, 2021
    risk 0.00cvss epss 0.01

    There is a Cleartext Transmission of Sensitive Information Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality and availability.

  • CVE-2021-22341Jun 29, 2021
    risk 0.00cvss epss 0.01

    There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations. This can lead to memory leak. Affected product versions include:IPS Module…

  • CVE-2021-22329Jun 29, 2021
    risk 0.00cvss epss 0.00

    There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper license management of the device, as a result, the license file can be…

  • CVE-2021-22338Jun 29, 2021
    risk 0.00cvss epss 0.01

    There is an XXE injection vulnerability in eCNS280 V100R005C00 and V100R005C10. A module does not perform the strict operation to the input XML message. Attacker can send specific message to exploit this vulnerability, leading to the module denial of service.

  • CVE-2021-22340Jun 29, 2021
    risk 0.00cvss epss 0.00

    There is a multiple threads race condition vulnerability in Huawei product. A race condition exists for concurrent I/O read by multiple threads. An attacker with the root permission can exploit this vulnerability by performing some operations. Successful exploitation of this…

  • CVE-2021-22439Jun 29, 2021
    risk 0.00cvss epss 0.01

    There is a deserialization vulnerability in Huawei AnyOffice V200R006C10. An attacker can construct a specific request to exploit this vulnerability. Successfully exploiting this vulnerability, the attacker can execute remote malicious code injection and to control the device.

  • CVE-2021-22383Jun 22, 2021
    risk 0.00cvss epss 0.01

    There is an out-of-bounds read vulnerability in eCNS280_TD V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a message-handling function that contains an out-of-bounds read vulnerability. An attacker can exploit…

  • CVE-2021-22382Jun 22, 2021
    risk 0.00cvss epss 0.00

    Huawei LTE USB Dongle products have an improper permission assignment vulnerability. An attacker can locally access and log in to a PC to induce a user to install a specially crafted application. After successfully exploiting this vulnerability, the attacker can perform…

  • CVE-2021-22363Jun 22, 2021
    risk 0.00cvss epss 0.01

    There is a resource management error vulnerability in eCNS280_TD V100R005C10SPC650. An attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource management of the function, the vulnerability can be exploited to…

  • CVE-2021-22342Jun 22, 2021
    risk 0.00cvss epss 0.01

    There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include:…

  • CVE-2021-22378Jun 22, 2021
    risk 0.00cvss epss 0.00

    There is a race condition vulnerability in eCNS280_TD V100R005C00 and V100R005C10. There is a timing window exists in which the database can be operated by another thread that is operating concurrently. Successful exploit may cause the affected device abnormal.

  • CVE-2021-22377Jun 22, 2021
    risk 0.00cvss epss 0.01

    There is a command injection vulnerability in S12700 V200R019C00SPC500, S2700 V200R019C00SPC500, S5700 V200R019C00SPC500, S6700 V200R019C00SPC500 and S7700 V200R019C00SPC500. A module does not verify specific input sufficiently. Attackers can exploit this vulnerability by…

  • CVE-2021-22366Jun 22, 2021
    risk 0.00cvss epss 0.00

    There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains an out-of-bounds read vulnerability. An attacker could crafted messages between…

  • CVE-2021-22365Jun 22, 2021
    risk 0.00cvss epss 0.00

    There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful…

  • CVE-2021-22361Jun 22, 2021
    risk 0.00cvss epss 0.00

    There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with low access may launch privilege escalation in a specific scenario. This may…

  • CVE-2021-22333Jun 3, 2021
    risk 0.00cvss epss 0.01

    There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute, thus obtaining system permissions.

  • CVE-2021-22316Jun 3, 2021
    risk 0.00cvss epss 0.00

    There is a Missing Authentication for Critical Function vulnerability in Huawei Smartphone. Attackers with physical access to the device can thereby exploit this vulnerability. A successful exploitation of this vulnerability can compromise the device's data security and…

  • CVE-2021-22317Jun 3, 2021
    risk 0.00cvss epss 0.01

    There is an Information Disclosure vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may impair data confidentiality.

  • CVE-2021-22360May 27, 2021
    risk 0.00cvss epss 0.01

    There is a resource management error vulnerability in the verisions V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 of USG9500. An authentication attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource…

  • CVE-2021-22364May 27, 2021
    risk 0.00cvss epss 0.00

    There is a denial of service vulnerability in the versions 10.1.0.126(C00E125R5P3) of HUAWEI Mate 30 and 10.1.0.152(C00E136R7P2) of HUAWEI Mate 30 (5G) . A module does not verify certain parameters sufficiently and it leads to some exceptions. Successful exploit could cause a…

  • CVE-2021-22359May 27, 2021
    risk 0.00cvss epss 0.01

    There is a denial of service vulnerability in the verisions V200R005C00SPC500 of S5700 and V200R005C00SPC500 of S6700. An attacker could exploit this vulnerability by sending specific message to a targeted device. Due to insufficient input validation, successful exploit can…

  • CVE-2021-22358May 27, 2021
    risk 0.00cvss epss 0.01

    There is an insufficient input validation vulnerability in FusionCompute 8.0.0. Due to the input validation is insufficient, an attacker can exploit this vulnerability to upload any files to the device. Successful exploit may cause the service abnormal.

Page 38 of 46