CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2023-34166
https://notcve.org/view.php?id=CVE-2023-34166
Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.3EPSS: 0%CPEs: 3EXPL: 0CVE-2022-48495
https://notcve.org/view.php?id=CVE-2022-48495
Vulnerability of unauthorized access to foreground app information.Successful exploitation of this vulnerability may cause foreground app information to be obtained. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-863: Incorrect Authorization •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48491
https://notcve.org/view.php?id=CVE-2022-48491
Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-862: Missing Authorization •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-0116
https://notcve.org/view.php?id=CVE-2023-0116
The reminder module lacks an authentication mechanism for broadcasts received. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-306: Missing Authentication for Critical Function •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2023-0117
https://notcve.org/view.php?id=CVE-2023-0117
The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitation of this vulnerability may affect availability of features,such as MeeTime. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-287: Improper Authentication •