CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2019-5282
https://notcve.org/view.php?id=CVE-2019-5282
13 Nov 2019 — Bastet module of some Huawei smartphones with Versions earlier than Emily-AL00A 9.0.0.182(C00E82R1P21), Versions earlier than Emily-TL00B 9.0.0.182(C01E82R1P21), Versions earlier than Emily-L09C 9.0.0.203(C432E7R1P11), Versions earlier than Emily-L29C 9.0.0.203(C432E7R1P11), Versions earlier than Emily-L29C 9.0.0.202(C185E2R1P12) have a double free vulnerability. An attacker tricks the user into installing a malicious application, which frees on the same memory address twice. Successful exploit could result... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190220-01-smartphone-en • CWE-415: Double Free •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-7961
https://notcve.org/view.php?id=CVE-2018-7961
27 Nov 2018 — There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information leak. Hay una vulnerabilidad de verificación de código SMS en algunos smartphones Huawei. Un atacante debería engañar a un usuario para que acceda a un sitio web malicioso o a una aplicación y registro maliciosos. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181121-02-smartphone-en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2018-7925
https://notcve.org/view.php?id=CVE-2018-7925
13 Nov 2018 — The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this vulnerability. El módulo radio de algunos smartphones Huawei Emily-AL00A en versiones anteriores a la 8.1.0.171(C00) tiene una vulnerabilidad de omisión de pantalla de bloqueo. Un atacante no autenticado podría iniciar aplicaciones de método de en... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181105-01-smartphone-en • CWE-863: Incorrect Authorization •