CVSS: 9.4EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39399
https://notcve.org/view.php?id=CVE-2023-39399
13 Aug 2023 — Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-275: Permission Issues CWE-285: Improper Authorization •
CVSS: 9.4EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39398
https://notcve.org/view.php?id=CVE-2023-39398
13 Aug 2023 — Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-275: Permission Issues CWE-285: Improper Authorization •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2023-39395
https://notcve.org/view.php?id=CVE-2023-39395
13 Aug 2023 — Mismatch vulnerability in the serialization process in the communication system. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-19: Data Processing Errors •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0CVE-2023-39391
https://notcve.org/view.php?id=CVE-2023-39391
13 Aug 2023 — Vulnerability of system file information leakage in the USB Service module. Successful exploitation of this vulnerability may affect confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.3EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39387
https://notcve.org/view.php?id=CVE-2023-39387
13 Aug 2023 — Vulnerability of permission control in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39383
https://notcve.org/view.php?id=CVE-2023-39383
13 Aug 2023 — Vulnerability of input parameters being not strictly verified in the AMS module. Successful exploitation of this vulnerability may compromise apps' data security. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39382
https://notcve.org/view.php?id=CVE-2023-39382
13 Aug 2023 — Input verification vulnerability in the audio module. Successful exploitation of this vulnerability may cause virtual machines (VMs) to restart. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-116: Improper Encoding or Escaping of Output •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39381
https://notcve.org/view.php?id=CVE-2023-39381
13 Aug 2023 — Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-116: Improper Encoding or Escaping of Output •
CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2023-39405
https://notcve.org/view.php?id=CVE-2023-39405
13 Aug 2023 — Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation of this vulnerability may cause other apps to be executed with escalated privileges. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2023-39389
https://notcve.org/view.php?id=CVE-2023-39389
13 Aug 2023 — Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability. • https://consumer.huawei.com/en/support/bulletin/2023/8 • CWE-20: Improper Input Validation CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') CWE-1285: Improper Validation of Specified Index, Position, or Offset in Input •