11 results (0.009 seconds)

CVSS: 6.2EPSS: 0%CPEs: 10EXPL: 0

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion. Se presenta una vulnerabilidad de escalada de privilegios en algunos teléfonos inteligentes de Huawei debido a defectos de diseño. El atacante necesita contactar físicamente con el teléfono móvil y conseguir mayores privilegios, y ejecutar comandos relevantes, resultando en la promoción de privilegios del usuario • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201202-01-smartphone-en •

CVSS: 5.3EPSS: 0%CPEs: 150EXPL: 0

There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en • CWE-20: Improper Input Validation •

CVSS: 5.3EPSS: 0%CPEs: 150EXPL: 0

There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en • CWE-20: Improper Input Validation •

CVSS: 7.1EPSS: 0%CPEs: 24EXPL: 0

Mate 10 Pro;Honor V10;Honor 10;Nova 4 smartphones have a denial of service vulnerability. The system does not properly check the status of certain module during certain operations, an attacker should trick the user into installing a malicious application, successful exploit could cause reboot of the smartphone. Los teléfonos inteligentes Mate 10 Pro; Honor V10; Honor 10; Nova 4, tiene una vulnerabilidad de denegación de servicio. El sistema no comprueba apropiadamente el estado de cierto módulo durante determinadas operaciones, un atacante debe engañar al usuario para que instale una aplicación maliciosa, una explotación con éxito podría causar el reinicio del teléfono inteligente. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200102-03-smartphone-en •

CVSS: 4.6EPSS: 0%CPEs: 50EXPL: 0

There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition. Successful exploit could cause information disclosure. tiene una vulnerabilidad de divulgación de información en ciertos teléfonos inteligentes Huawei (Mate 10; Mate 10 Pro; Honor V10; Changxiang 7S; P-smart; Changxiang 8 Plus; Y9 2018; Honor 9 Lite; Honor 9i; Mate 9). El software no maneja apropiadamente cierta información de aplicaciones bloqueadas mediante applock en una condición extraña. La explotación con éxito podría causar una divulgación de información. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-smartphone-en •