CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2023-52717
https://notcve.org/view.php?id=CVE-2023-52717
07 Apr 2024 — Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de verificación de permisos en el módulo de pantalla de bloqueo. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-276: Incorrect Default Permissions •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52716
https://notcve.org/view.php?id=CVE-2023-52716
07 Apr 2024 — Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de inicio de actividades en segundo plano en el módulo ActivityManagerService (AMS). Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerabili... • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52714
https://notcve.org/view.php?id=CVE-2023-52714
07 Apr 2024 — Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de defectos introducidos en el proceso de diseño en el módulo hwnff. Impacto: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service conf... • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-657: Violation of Secure Design Principles •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52713
https://notcve.org/view.php?id=CVE-2023-52713
07 Apr 2024 — Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. Vulnerabilidad de control inadecuado de permisos en el módulo de gestión de ventanas. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad y la confidencialidad. Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect... • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-862: Missing Authorization •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-30418
https://notcve.org/view.php?id=CVE-2024-30418
07 Apr 2024 — Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de verificación de permisos insuficiente en el módulo de gestión de aplicaciones. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-280: Improper Handling of Insufficient Permissions or Privileges CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2024-30417
https://notcve.org/view.php?id=CVE-2024-30417
07 Apr 2024 — Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de path traversal en el módulo de uso compartido basado en Bluetooth. Impacto: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2024-30416
https://notcve.org/view.php?id=CVE-2024-30416
07 Apr 2024 — Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de Use-After-Free (UAF) en el módulo del controlador subyacente. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-416: Use After Free •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2024-30415
https://notcve.org/view.php?id=CVE-2024-30415
07 Apr 2024 — Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de control inadecuado de permisos en el módulo de gestión de ventanas. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-276: Incorrect Default Permissions •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2024-30414
https://notcve.org/view.php?id=CVE-2024-30414
07 Apr 2024 — Command injection vulnerability in the AccountManager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de inyección de comandos en el módulo AccountManager. Impacto: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Command injection vulnerability in the AccountManager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2024-30413
https://notcve.org/view.php?id=CVE-2024-30413
07 Apr 2024 — Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de control inadecuado de permisos en el módulo de gestión de ventanas. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 •