CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52538
https://notcve.org/view.php?id=CVE-2023-52538
08 Apr 2024 — Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de omitir la verificación del nombre del paquete en el módulo HwIms. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/3 • CWE-863: Incorrect Authorization •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52537
https://notcve.org/view.php?id=CVE-2023-52537
08 Apr 2024 — Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de omitir la verificación del nombre del paquete en el módulo HwIms. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/3 • CWE-280: Improper Handling of Insufficient Permissions or Privileges CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52388
https://notcve.org/view.php?id=CVE-2023-52388
08 Apr 2024 — Permission control vulnerability in the clock module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de control de permisos en el módulo de reloj. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Permission control vulnerability in the clock module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/3 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 0CVE-2023-52717
https://notcve.org/view.php?id=CVE-2023-52717
07 Apr 2024 — Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de verificación de permisos en el módulo de pantalla de bloqueo. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Permission verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-276: Incorrect Default Permissions •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52716
https://notcve.org/view.php?id=CVE-2023-52716
07 Apr 2024 — Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de inicio de actividades en segundo plano en el módulo ActivityManagerService (AMS). Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of starting activities in the background in the ActivityManagerService (AMS) module. Impact: Successful exploitation of this vulnerabili... • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-269: Improper Privilege Management •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52714
https://notcve.org/view.php?id=CVE-2023-52714
07 Apr 2024 — Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de defectos introducidos en el proceso de diseño en el módulo hwnff. Impacto: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Vulnerability of defects introduced in the design process in the hwnff module. Impact: Successful exploitation of this vulnerability may affect service conf... • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-657: Violation of Secure Design Principles •
CVSS: 7.7EPSS: 0%CPEs: 7EXPL: 0CVE-2023-52713
https://notcve.org/view.php?id=CVE-2023-52713
07 Apr 2024 — Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality. Vulnerabilidad de control inadecuado de permisos en el módulo de gestión de ventanas. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad y la confidencialidad. Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect... • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-862: Missing Authorization •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-30418
https://notcve.org/view.php?id=CVE-2024-30418
07 Apr 2024 — Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de verificación de permisos insuficiente en el módulo de gestión de aplicaciones. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Vulnerability of insufficient permission verification in the app management module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-280: Improper Handling of Insufficient Permissions or Privileges CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2024-30417
https://notcve.org/view.php?id=CVE-2024-30417
07 Apr 2024 — Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de path traversal en el módulo de uso compartido basado en Bluetooth. Impacto: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2024-30416
https://notcve.org/view.php?id=CVE-2024-30416
07 Apr 2024 — Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will affect availability. Vulnerabilidad de Use-After-Free (UAF) en el módulo del controlador subyacente. Impacto: La explotación exitosa de esta vulnerabilidad afectará la disponibilidad. Use After Free (UAF) vulnerability in the underlying driver module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/4 • CWE-416: Use After Free •