CVSS: 4.1EPSS: 0%CPEs: 9EXPL: 0CVE-2024-56441
https://notcve.org/view.php?id=CVE-2024-56441
08 Jan 2025 — Race condition vulnerability in the Bastet module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Race condition vulnerability in the Bastet module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/1 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 6.2EPSS: 0%CPEs: 6EXPL: 0CVE-2024-56440
https://notcve.org/view.php?id=CVE-2024-56440
08 Jan 2025 — Permission control vulnerability in the Connectivity module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. Permission control vulnerability in the Connectivity module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2025/1 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.0EPSS: 0%CPEs: 4EXPL: 0CVE-2024-56438
https://notcve.org/view.php?id=CVE-2024-56438
08 Jan 2025 — Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/1 • CWE-840: Business Logic Errors •
CVSS: 4.4EPSS: 0%CPEs: 3EXPL: 0CVE-2024-56434
https://notcve.org/view.php?id=CVE-2024-56434
08 Jan 2025 — UAF vulnerability in the device node access module Impact: Successful exploitation of this vulnerability may cause service exceptions of the device. UAF vulnerability in the device node access module Impact: Successful exploitation of this vulnerability may cause service exceptions of the device. • https://consumer.huawei.com/en/support/bulletin/2025/1 • CWE-672: Operation on a Resource after Expiration or Release •
CVSS: 6.2EPSS: 0%CPEs: 9EXPL: 0CVE-2024-54101
https://notcve.org/view.php?id=CVE-2024-54101
12 Dec 2024 — Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability. Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-20: Improper Input Validation •
CVSS: 6.2EPSS: 0%CPEs: 9EXPL: 0CVE-2024-54100
https://notcve.org/view.php?id=CVE-2024-54100
12 Dec 2024 — Vulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. Vulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-20: Improper Input Validation •
CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0CVE-2024-54099
https://notcve.org/view.php?id=CVE-2024-54099
12 Dec 2024 — File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-16: Configuration •
CVSS: 8.5EPSS: 0%CPEs: 9EXPL: 0CVE-2024-54098
https://notcve.org/view.php?id=CVE-2024-54098
12 Dec 2024 — Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect service integrity. Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect service integrity. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-840: Business Logic Errors •
CVSS: 7.3EPSS: 0%CPEs: 9EXPL: 0CVE-2024-54097
https://notcve.org/view.php?id=CVE-2024-54097
12 Dec 2024 — Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementation and integrity. Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementation and integrity. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-15: External Control of System or Configuration Setting •
CVSS: 5.3EPSS: 0%CPEs: 9EXPL: 0CVE-2024-54096
https://notcve.org/view.php?id=CVE-2024-54096
12 Dec 2024 — Vulnerability of improper access control in the MTP module Impact: Successful exploitation of this vulnerability may affect integrity and accuracy. Vulnerability of improper access control in the MTP module Impact: Successful exploitation of this vulnerability may affect integrity and accuracy. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-284: Improper Access Control •