CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-39384
https://notcve.org/view.php?id=CVE-2023-39384
13 Aug 2023 — Vulnerability of incomplete permission verification in the input method module. Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-264: Permissions, Privileges, and Access Controls CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39383
https://notcve.org/view.php?id=CVE-2023-39383
13 Aug 2023 — Vulnerability of input parameters being not strictly verified in the AMS module. Successful exploitation of this vulnerability may compromise apps' data security. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39382
https://notcve.org/view.php?id=CVE-2023-39382
13 Aug 2023 — Input verification vulnerability in the audio module. Successful exploitation of this vulnerability may cause virtual machines (VMs) to restart. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-116: Improper Encoding or Escaping of Output •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39381
https://notcve.org/view.php?id=CVE-2023-39381
13 Aug 2023 — Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-116: Improper Encoding or Escaping of Output •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-39380
https://notcve.org/view.php?id=CVE-2023-39380
13 Aug 2023 — Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause audio devices to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-264: Permissions, Privileges, and Access Controls CWE-287: Improper Authentication CWE-306: Missing Authentication for Critical Function •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-39396
https://notcve.org/view.php?id=CVE-2023-39396
13 Aug 2023 — Deserialization vulnerability in the input module. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-125: Out-of-bounds Read CWE-502: Deserialization of Untrusted Data •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-39393
https://notcve.org/view.php?id=CVE-2023-39393
13 Aug 2023 — Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation of this vulnerability may cause ServiceWifiResources to be maliciously modified and overwritten. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2023-39392
https://notcve.org/view.php?id=CVE-2023-39392
13 Aug 2023 — Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to be maliciously modified and overwritten. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-16: Configuration CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39389
https://notcve.org/view.php?id=CVE-2023-39389
13 Aug 2023 — Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-1285: Improper Validation of Specified Index, Position, or Offset in Input •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39388
https://notcve.org/view.php?id=CVE-2023-39388
13 Aug 2023 — Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-1285: Improper Validation of Specified Index, Position, or Offset in Input •