CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-46885
https://notcve.org/view.php?id=CVE-2021-46885
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-46886
https://notcve.org/view.php?id=CVE-2021-46886
The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2021-46887
https://notcve.org/view.php?id=CVE-2021-46887
Lack of length check vulnerability in the HW_KEYMASTER module. Successful exploitation of this vulnerability may cause out-of-bounds read. • https://consumer.huawei.com/en/support/bulletin/2023/5 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-48480
https://notcve.org/view.php?id=CVE-2022-48480
Integer overflow vulnerability in some phones. Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2023-0116
https://notcve.org/view.php?id=CVE-2023-0116
The reminder module lacks an authentication mechanism for broadcasts received. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-306: Missing Authentication for Critical Function •