CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2016-8761
https://notcve.org/view.php?id=CVE-2016-8761
Video driver in Huawei P9 phones with software versions before EVA-AL10C00B192 and Huawei Honor 6 phones with software versions before H60-L02_6.10.1 has a stack overflow vulnerability, which allows attackers to crash the system or escalate user privilege. El controlador de vídeo en teléfonos Huawei P9 con versiones de software anteriores a EVA-AL10C00B192 y teléfonos Huawei Honor 6 con versiones de software anteriores a H60-L02_6.10.1 tiene una vulnerabilidad de desbordamiento de pila, lo que permite a atacantes bloquear el sistema o escalar el privilegio del usuario. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161012-01-smartphone-en http://www.securityfocus.com/bid/93530 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 5.0EPSS: 0%CPEs: 6EXPL: 0CVE-2016-8762
https://notcve.org/view.php?id=CVE-2016-8762
The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to cause the system to restart. El controlador TrustZone en teléfonos Huawei P9 con versiones de software anteriores a EVA-AL10C00B352 y P9 Lite con software VNS-L21C185B130 y versiones anteriores y P8 Lite con software ALE-L02C636B150 y versiones anteriores tiene una vulnerabilidad de validación de entrada, lo que permite a atacantes provocar el reinicio del sistema. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-smartphone-en http://www.securityfocus.com/bid/94509 • CWE-20: Improper Input Validation •
CVSS: 4.3EPSS: 0%CPEs: 5EXPL: 0CVE-2016-8757
https://notcve.org/view.php?id=CVE-2016-8757
ION memory management module in Huawei P9 phones with software EVA-AL10C00B192 and earlier versions, EVA-DL10C00B192 and earlier versions, EVA-TL10C00B192 and earlier versions, EVA-CL10C00B192 and earlier versions allows attackers to obtain sensitive information from uninitialized memory. El módulo de administración de memoria ION en teléfonos Huawei P9 con software EVA-AL10C00B192 y versiones anteriores, EVA-DL10C00B192 y versiones anteriores, EVA-TL10C00B192 y versiones anteriores, EVA-CL10C00B192 y versiones anteriores permite a atacantes obtener información sensible de la memoria no inicializada. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161026-02-smartphone-en http://www.securityfocus.com/bid/93932 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.4EPSS: 0%CPEs: 6EXPL: 0CVE-2016-8764
https://notcve.org/view.php?id=CVE-2016-8764
The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to read and write user-mode memory data anywhere in the TrustZone driver. El controlador TrustZone en teléfonos Huawei P9 con versiones de software anteriores a EVA-AL10C00B352 y P9 Lite con software VNS-L21C185B130 y versiones anteriores y P8 Lite con software ALE-L02C636B150 y versiones anteriores tiene una vulnerabilidad de validación de entrada, lo que permite a atacantes leer y escribir datos de memoria en modo usuario en cualquier lugar en el controlador TrustZone. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-smartphone-en http://www.securityfocus.com/bid/94509 • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 6EXPL: 0CVE-2016-8763
https://notcve.org/view.php?id=CVE-2016-8763
The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an improper resource release vulnerability, which allows attackers to cause a system restart or privilege elevation. El controlador TrustZone en teléfonos Huawei P9 con versiones de software anteriores a EVA-AL10C00B352 y P9 Lite con software VNS-L21C185B130 y versiones anteriores y P8 Lite con software ALE-L02C636B150 y versiones anteriores tiene una vulnerabilidad de liberación de recursos inadecuada, lo que permite a atacantes provocar un reinicio del sistema o elevación de privilegios. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-01-smartphone-en http://www.securityfocus.com/bid/94509 • CWE-664: Improper Control of a Resource Through its Lifetime •