CVSS: 9.3EPSS: 0%CPEs: 3EXPL: 0CVE-2024-39671
https://notcve.org/view.php?id=CVE-2024-39671
Access control vulnerability in the security verification module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/7 • CWE-840: Business Logic Errors •
CVSS: 5.5EPSS: 0%CPEs: 9EXPL: 0CVE-2023-7271
https://notcve.org/view.php?id=CVE-2023-7271
Privilege escalation vulnerability in the NMS module Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/7 • CWE-840: Business Logic Errors •
CVSS: 6.2EPSS: 0%CPEs: 9EXPL: 0CVE-2024-39670
https://notcve.org/view.php?id=CVE-2024-39670
Privilege escalation vulnerability in the account synchronisation module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/7 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.2EPSS: 0%CPEs: 9EXPL: 0CVE-2024-39674
https://notcve.org/view.php?id=CVE-2024-39674
Plaintext vulnerability in the Gallery search module. Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/7 • CWE-312: Cleartext Storage of Sensitive Information •
CVSS: 6.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-39673
https://notcve.org/view.php?id=CVE-2024-39673
Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/7 • CWE-26: Path Traversal: '/dir/../filename' •