CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-34161
https://notcve.org/view.php?id=CVE-2023-34161
19 Jun 2023 — nappropriate authorization vulnerability in the SettingsProvider module.Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-863: Incorrect Authorization •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-34163
https://notcve.org/view.php?id=CVE-2023-34163
19 Jun 2023 — Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2023/6 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2023-34166
https://notcve.org/view.php?id=CVE-2023-34166
19 Jun 2023 — Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-400: Uncontrolled Resource Consumption CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2023-34167
https://notcve.org/view.php?id=CVE-2023-34167
19 Jun 2023 — Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48488
https://notcve.org/view.php?id=CVE-2022-48488
19 Jun 2023 — Vulnerability of bypassing the default desktop security controls.Successful exploitation of this vulnerability may cause unauthorized modifications to the desktop. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-863: Incorrect Authorization •
CVSS: 5.3EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48491
https://notcve.org/view.php?id=CVE-2022-48491
19 Jun 2023 — Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-862: Missing Authorization •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48494
https://notcve.org/view.php?id=CVE-2022-48494
19 Jun 2023 — Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-287: Improper Authentication CWE-306: Missing Authentication for Critical Function •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48496
https://notcve.org/view.php?id=CVE-2022-48496
19 Jun 2023 — Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized. • https://consumer.huawei.com/en/support/bulletin/2023/6 • CWE-287: Improper Authentication CWE-306: Missing Authentication for Critical Function •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-46881
https://notcve.org/view.php?id=CVE-2021-46881
26 May 2023 — The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2021-46882
https://notcve.org/view.php?id=CVE-2021-46882
26 May 2023 — The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/5 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •