CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8141
https://notcve.org/view.php?id=CVE-2017-8141
22 Nov 2017 — The Touch Panel (TP) driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a memory double free vulnerability. An attacker with the root privilege of the Android system tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution. El controlador Touch Panel (TP) en smartphones P10 Plus con versiones de software ante... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170612-01-smartphone-en • CWE-415: Double Free •
CVSS: 7.2EPSS: 0%CPEs: 44EXPL: 0CVE-2017-8214
https://notcve.org/view.php?id=CVE-2017-8214
22 Nov 2017 — Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B1... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170807-01-smartphone-en • CWE-287: Improper Authentication •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2017-2724
https://notcve.org/view.php?id=CVE-2017-2724
22 Nov 2017 — Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution. Bastet en smartphones P10 Plus y P10 con software VKY-AL00C00B123 y anteriores y VTR-AL00... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170405-01-smartphone-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-8146
https://notcve.org/view.php?id=CVE-2017-8146
22 Nov 2017 — The call module of P10 and P10 Plus smartphones with software versions before VTR-AL00C00B167, versions before VTR-TL00C01B167, versions before VKY-AL00C00B167, versions before VKY-TL00C01B167 has a DoS vulnerability. An attacker may trick a user into installing a malicious application, and the application can send given parameter to call module to crash the call and data communication process. El módulo de llamada de smartphones P10 y P10 Plus con versiones de software anteriores a VTR-AL00C00B167, VTR-TL0... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170725-02-smartphone-en • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2017-8145
https://notcve.org/view.php?id=CVE-2017-8145
22 Nov 2017 — The call module of P10 and P10 Plus smartphones with software versions before VTR-AL00C00B167, versions before VTR-TL00C01B167, versions before VKY-AL00C00B167, versions before VKY-TL00C01B167 has a DoS vulnerability. An attacker may trick a user into installing a malicious application, and the application can send given parameter to call module to crash the call and data communication process. El módulo de llamada de smartphones P10 y P10 Plus con versiones de software anteriores a VTR-AL00C00B167, VTR-TL0... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170725-02-smartphone-en • CWE-20: Improper Input Validation •