CVSS: 7.2EPSS: 0%CPEs: 8EXPL: 0CVE-2016-8774
https://notcve.org/view.php?id=CVE-2016-8774
The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366; and P9 phones with software Versions before EVA-AL10C00B190, Versions before EVA-DL10C00B190, Versions before EVA-TL10C00B190, Versions before EVA-CL10C00B190 allows attackers to get root privilege or crash the system or execute arbitrary code, related to a buffer overflow. El controlador HIFI en teléfonos Huawei Mate 8 con versiones de software anteriores a NXT-AL10C00B386, versiones anteriores a NXT-CL00C92B386, versiones anteriores a NXT-DL00C17B386, versiones anteriores a NXT-TL00C01B386; teléfonos Mate S con versiones de software anteriores a CRR-CL00C92B368, versiones anteriores a CRR-CL20C92B368, versiones anteriores a CRR-TL00C01B368, versiones anteriores a CRR-UL00C00B368, versiones anteriores a CRR-UL20C00B368; teléfonos P8 con versiones de software anteriores a GRA-TL00C01B366, versiones anteriores a GRA-CL00C92B366, versiones anteriores a GRA-CL10C92B366, versiones anteriores a GRA-UL00C00B366, versiones anteriores a y GRA-UL10C00B366; y teléfonos P9 con versiones de software anteriores a EVA-AL10C00B190, versiones anteriores a EVA-DL10C00B190, versiones anteriores a EVA-TL10C00B190, versiones anteriores a EVA-CL10C00B190 permiten a atacantes obtener privilegios de root o bloquear el sistema o ejecutar código arbitrario, relacionado con un desbordamiento de búfer. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-02-smartphone-en http://www.securityfocus.com/bid/94503 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2016-8791
https://notcve.org/view.php?id=CVE-2016-8791
Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; and P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366 allow attackers with graphic or Camera privilege to crash the system or escalate privilege. Teléfonos Huawei Mate 8 con versiones de software anteriores a NXT-AL10C00B386, versiones anteriores a NXT-CL00C92B386, versiones anteriores a NXT-DL00C17B386, versiones anteriores a NXT-TL00C01B386; teléfonos Mate S con versiones de software anteriores a CRR-CL00C92B368, versiones anteriores a CRR-CL20C92B368, versiones anteriores a CRR-TL00C01B368, versiones anteriores a CRR-UL00C00B368, versiones anteriores a CRR-UL20C00B368; y teléfonos P8 con versiones de software anteriores a GRA-TL00C01B366, versiones anteriores a GRA-CL00C92B366, versiones anteriores a GRA-CL10C92B366, versiones anteriores a GRA-UL00C00B366, versiones anteriores a GRA-UL10C00B366 permiten a atacantes con privilegios de gráfico o de cámara bloquear el sistema o escalar privilegios. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-smartphone-en http://www.securityfocus.com/bid/94404 • CWE-284: Improper Access Control •
CVSS: 6.7EPSS: 0%CPEs: 6EXPL: 0CVE-2016-8793
https://notcve.org/view.php?id=CVE-2016-8793
Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; and P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366 allow attackers with graphic or Camera privilege to crash the system or escalate privilege. Teléfonos Huawei Mate 8 con versiones de software anteriores a NXT-AL10C00B386, versiones anteriores a NXT-CL00C92B386, versiones anteriores a NXT-DL00C17B386, versiones anteriores a NXT-TL00C01B386; teléfonos Mate S con versiones de software anteriores a CRR-CL00C92B368, versiones anteriores a CRR-CL20C92B368, versiones anteriores a CRR-TL00C01B368, versiones anteriores a CRR-UL00C00B368, versiones anteriores a CRR-UL20C00B368; y teléfonos P8 con versiones de software anteriores a GRA-TL00C01B366, versiones anteriores a GRA-CL00C92B366, versiones anteriores a GRA-CL10C92B366, versiones anteriores a GRA-UL00C00B366, versiones anteriores a GRA-UL10C00B366 permiten a atacantes con privilegios de gráfico o de cámara bloquear el sistema o escalar privilegios. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161116-01-smartphone-en http://www.securityfocus.com/bid/94404 • CWE-284: Improper Access Control •
CVSS: 7.1EPSS: 0%CPEs: 10EXPL: 0CVE-2015-8678
https://notcve.org/view.php?id=CVE-2015-8678
The ION driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows remote attackers to cause a denial of service (crash) via a crafted application. El controlador ION en teléfonos inteligentes Huawei P8 con software GRA-TL00 en versiones anteriores a GRA-TL00C01B230, GRA-CL00 en versiones anteriores a GRA-CL00C92B230, GRA-CL10 en versiones anteriores a GRA-CL10C92B230, GRA-UL00 en versiones anteriores a GRA-UL00C00B230 y GRA-UL10 en versiones anteriores a GRA-UL10C00B230 y teléfonos inteligentes Mate S con software CRR-TL00 en versiones anteriores a CRR-TL00C01B160SP01, CRR-UL00 en versiones anteriores a CRR-UL00C00B160 y CRR-CL00 en versiones anteriores a CRR-CL00C92B161 permite a atacantes remotos provocar una denegación de servicio (caída) a través de una aplicación manipulada. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160105-01-smartphone-en • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 13EXPL: 0CVE-2016-8279
https://notcve.org/view.php?id=CVE-2016-8279
The video driver in Huawei Mate S smartphones with software CRR-TL00 before CRR-TL00C01B362, CRR-UL20 before CRR-UL20C00B362, CRR-CL00 before CRR-CL00C92B362, and CRR-CL20 before CRR-CL20C92B362; P8 smartphones with software GRA-TL00 before GRA-TL00C01B366, GRA-UL00 before GRA-UL00C00B366, GRA-UL10 before GRA-UL10C00B366, and GRA-CL00 before GRA-CL00C92B366; and Honor 6 and Honor 6 Plus smartphones with software before 6.9.16 allows attackers to cause a denial of service (device reboot) via a crafted application. El controlador de vídeo en smartphones Huawei Mate S con software CRR-TL00 en versiones anteriores a CRR-TL00C01B362, CRR-UL20 en versiones anteriores a CRR-UL20C00B362, CRR-CL00 en versiones anteriores a CRR-CL00C92B362 y CRR-CL20 en versiones anteriores a CRR-CL20C92B362; smartphones P8 con software GRA-TL00 en versiones anteriores a GRA-TL00C01B366, GRA-UL00 en versiones anteriores a GRA-UL00C00B366, GRA-UL10 en versiones anteriores a GRA-UL10C00B366 y GRA-CL00 en versiones anteriores a GRA-CL00C92B366; y smartphones Honor 6 y Honor 6 Plus con software en versiones anteriores a 6.9.16 permite a atacantes provocar una denegación de servicio (reinicio del dispositivo) a través de una aplicación manipulada. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160921-01-smartphone-en http://www.securityfocus.com/bid/93096 • CWE-284: Improper Access Control •