CVSS: 9.3EPSS: 0%CPEs: 26EXPL: 0CVE-2017-8150
https://notcve.org/view.php?id=CVE-2017-8150
22 Nov 2017 — The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 have an arbitrary memory write vulnerability due to the lack of parameter validation. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause arbitrary memory writing in the next system reboot, causing continuous system re... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170816-02-smartphone-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.9EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8171
https://notcve.org/view.php?id=CVE-2017-8171
22 Nov 2017 — Huawei smart phones with software earlier than Vicky-AL00AC00B172D versions have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the Talkback mode and can perform some operations to bypass the Google account verification. As a result, the FRP function is bypassed. Los smartphones Huawei con software anterior a las versiones Vicky-AL00AC00B172D tienen una vulnerabilidad de seguridad d... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171018-01-frpbypass-en • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 0CVE-2017-8172
https://notcve.org/view.php?id=CVE-2017-8172
22 Nov 2017 — Isub service in P10 Plus and P10 smart phones with earlier than VKY-AL00C00B157 versions and earlier than VTR-AL00C00B157 versions has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a out-of-bounds array access that results in smart phone restart. El servicio Isub en los smartphones P10 Plus y P10 en versiones anteriores a VKY-AL00C00B157 y VTR-AL00C0... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170628-01-isub-en • CWE-129: Improper Validation of Array Index •
CVSS: 7.2EPSS: 0%CPEs: 44EXPL: 0CVE-2017-8214
https://notcve.org/view.php?id=CVE-2017-8214
22 Nov 2017 — Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B1... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170807-01-smartphone-en • CWE-287: Improper Authentication •
CVSS: 7.2EPSS: 0%CPEs: 44EXPL: 0CVE-2017-8215
https://notcve.org/view.php?id=CVE-2017-8215
22 Nov 2017 — Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B1... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170807-01-smartphone-en •