CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57962
https://notcve.org/view.php?id=CVE-2024-57962
06 Feb 2025 — Vulnerability of incomplete verification information in the VPN service module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability of incomplete verification information in the VPN service module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE CATEGORY •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2024-57959
https://notcve.org/view.php?id=CVE-2024-57959
06 Feb 2025 — Use-After-Free (UAF) vulnerability in the display module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. Use-After-Free (UAF) vulnerability in the display module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE-416: Use After Free •
CVSS: 5.7EPSS: 0%CPEs: 5EXPL: 0CVE-2024-57958
https://notcve.org/view.php?id=CVE-2024-57958
06 Feb 2025 — Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. Out-of-bounds array read vulnerability in the FFRT module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE-125: Out-of-bounds Read •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-12602
https://notcve.org/view.php?id=CVE-2024-12602
06 Feb 2025 — Identity verification vulnerability in the ParamWatcher module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Identity verification vulnerability in the ParamWatcher module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE-300: Channel Accessible by Non-Endpoint •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57957
https://notcve.org/view.php?id=CVE-2024-57957
06 Feb 2025 — Vulnerability of improper log information control in the UI framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerability of improper log information control in the UI framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE-657: Violation of Secure Design Principles •
CVSS: 2.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57956
https://notcve.org/view.php?id=CVE-2024-57956
06 Feb 2025 — Out-of-bounds read vulnerability in the interpreter string module Impact: Successful exploitation of this vulnerability may affect availability. Out-of-bounds read vulnerability in the interpreter string module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE-680: Integer Overflow to Buffer Overflow •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57955
https://notcve.org/view.php?id=CVE-2024-57955
06 Feb 2025 — Arbitrary write vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-57954
https://notcve.org/view.php?id=CVE-2024-57954
06 Feb 2025 — Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/2 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54121
https://notcve.org/view.php?id=CVE-2024-54121
08 Jan 2025 — Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2025/1 • CWE-20: Improper Input Validation •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-56456
https://notcve.org/view.php?id=CVE-2024-56456
08 Jan 2025 — Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/1 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •