CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54105
https://notcve.org/view.php?id=CVE-2024-54105
12 Dec 2024 — Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability. Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54104
https://notcve.org/view.php?id=CVE-2024-54104
12 Dec 2024 — Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-54103
https://notcve.org/view.php?id=CVE-2024-54103
12 Dec 2024 — Vulnerability of improper access control in the album module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerability of improper access control in the album module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2024-54102
https://notcve.org/view.php?id=CVE-2024-54102
12 Dec 2024 — Race condition vulnerability in the DDR module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Race condition vulnerability in the DDR module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/12 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-51526
https://notcve.org/view.php?id=CVE-2024-51526
05 Nov 2024 — Permission control vulnerability in the hidebug module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de control de permisos en hidebug module Impact: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Permission control vulnerability in the hidebug module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/11 • CWE-347: Improper Verification of Cryptographic Signature •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-51525
https://notcve.org/view.php?id=CVE-2024-51525
05 Nov 2024 — Permission control vulnerability in the clipboard module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de control de permisos en clipboard module Impact: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Permission control vulnerability in the clipboard module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/11 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-51524
https://notcve.org/view.php?id=CVE-2024-51524
05 Nov 2024 — Permission control vulnerability in the Wi-Fi module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de control de permisos en Wi-Fi module Impact: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Permission control vulnerability in the Wi-Fi module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/11 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-51523
https://notcve.org/view.php?id=CVE-2024-51523
05 Nov 2024 — Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality. Vulnerabilidad de gestión de información en Gallery module Impact: La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad del servicio. Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality. • https://consumer.huawei.com/en/support/bulletin/2024/11 • CWE-840: Business Logic Errors •
CVSS: 6.2EPSS: 0%CPEs: 1EXPL: 0CVE-2024-51522
https://notcve.org/view.php?id=CVE-2024-51522
05 Nov 2024 — Vulnerability of improper device information processing in the device management module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerabilidad de procesamiento inadecuado de información del dispositivo en device management module Impact: La explotación exitosa de esta vulnerabilidad puede afectar la disponibilidad. Vulnerability of improper device information processing in the device management module Impact: Successful exploitation of this vulnerability may affect ava... • https://consumer.huawei.com/en/support/bulletin/2024/11 • CWE-199: Information Management Errors •
CVSS: 5.7EPSS: 0%CPEs: 1EXPL: 0CVE-2024-51521
https://notcve.org/view.php?id=CVE-2024-51521
05 Nov 2024 — Input parameter verification vulnerability in the background service module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerabilidad de verificación de parámetros de entrada en background service module Impact: La explotación exitosa de esta vulnerabilidad puede afectar la disponibilidad. Input parameter verification vulnerability in the background service module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2024/11 • CWE-269: Improper Privilege Management •