CVSS: 5.3EPSS: 0%CPEs: 150EXPL: 0CVE-2019-5302
https://notcve.org/view.php?id=CVE-2019-5302
27 Apr 2020 — There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en • CWE-20: Improper Input Validation •
CVSS: 3.6EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1807
https://notcve.org/view.php?id=CVE-2020-1807
27 Apr 2020 — HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app lock after a series of operation in ADB mode. Los teléfonos inteligentes HUAWEI Mate 20 con versiones anteriores a la versión 10.0.0.188(C00E74R3P8), presentan una vulnerabilidad de autorización inapropiada. El software no restringe... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200422-01-smartphone-en •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1794
https://notcve.org/view.php?id=CVE-2020-1794
20 Mar 2020 — There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to gain certain data of the application which is locked. Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2). Se presenta una vulnerabilidad de autenticación inapropiada en varios teléfonos ... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200318-02-smartphone-en • CWE-287: Improper Authentication •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1793
https://notcve.org/view.php?id=CVE-2020-1793
20 Mar 2020 — There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to gain certain data of the application which is locked. Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2). Se presenta una vulnerabilidad de autenticación inapropiada en varios teléfonos ... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200318-02-smartphone-en • CWE-287: Improper Authentication •
CVSS: 6.6EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1796
https://notcve.org/view.php?id=CVE-2020-1796
20 Mar 2020 — There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain user, successful exploit could allow a low privilege user to do certain operation which the user are supposed not to do.Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2). Se presenta una vulnerabilidad de autorización inapropiada en varios teléfonos ... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200318-05-smartphone-en • CWE-863: Incorrect Authorization •
CVSS: 2.4EPSS: 0%CPEs: 4EXPL: 0CVE-2020-1795
https://notcve.org/view.php?id=CVE-2020-1795
20 Mar 2020 — There is a logic error vulnerability in several smartphones. The software does not properly restrict certain operation when the Digital Balance function is on. Successful exploit could allow the attacker to bypass the Digital Balance limit after a series of operations.Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2). Se presenta una vulnerabilidad de error lógico en varios teléfono... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200318-04-smartphone-en •
CVSS: 2.4EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1791
https://notcve.org/view.php?id=CVE-2020-1791
18 Feb 2020 — HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system has a logic judging error under certain scenario, successful exploit could allow the attacker to switch to third desktop after a series of operation in ADB mode. Los teléfonos inteligentes HUAWEI Mate 20 con versiones anteriores a 10.0.0.185(C00E74R3P8), presentan una vulnerabilidad de autorización inapropiada. El sistema presenta un error de juicio lógico bajo determinado es... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200205-01-smartphone-en •
CVSS: 8.8EPSS: 0%CPEs: 46EXPL: 9CVE-2020-0022 – Android Bluetooth Remote Denial of Service
https://notcve.org/view.php?id=CVE-2020-0022
13 Feb 2020 — In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-143894715 En la función reassemble_and_dispatch del archivo packet_fragmenter.cc, es posible una escritura fuera de límites debido a un cálculo de... • https://packetstorm.news/files/id/156891 • CWE-682: Incorrect Calculation •
CVSS: 6.0EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1840
https://notcve.org/view.php?id=CVE-2020-1840
21 Jan 2020 — HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to exploit this vulnerability. Successful exploitation may cause information leak and compromise the availability of the smart phones.Affected product versions include: HUAWEI Mate 20 versions Versions earlier than 10.0.0.175(C00E70R3P8) Los teléfonos inteligentes HUAWEI Mate 20 con versiones anteriores a 10.0.0.1... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-smartphone-en • CWE-287: Improper Authentication •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1787
https://notcve.org/view.php?id=CVE-2020-1787
09 Jan 2020 — HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authentication vulnerability. The system has a logic error under certain scenario, successful exploit could allow the attacker who gains the privilege of guest user to access to the host user's desktop in an instant, without unlocking the screen lock of the host user. Los teléfonos inteligentes HUAWEI Mate 20 versiones anteriores a 9.1.0.139(C00E133R3P1), presentan una vulnerabilidad de autenticación inapropiada. El sis... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200108-02-smartphone-en • CWE-287: Improper Authentication •