CVSS: 5.9EPSS: %CPEs: 10EXPL: 0CVE-2025-53186
https://notcve.org/view.php?id=CVE-2025-53186
07 Jul 2025 — Vulnerability that allows third-party call apps to send broadcasts without verification in the audio framework module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability that allows third-party call apps to send broadcasts without verification in the audio framework module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/7 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.6EPSS: %CPEs: 3EXPL: 0CVE-2025-53185
https://notcve.org/view.php?id=CVE-2025-53185
07 Jul 2025 — Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released memory Impact: Successful exploitation of this vulnerability may affect service integrity. Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released memory Impact: Successful exploitation of this vulnerability may affect service integrity. • https://consumer.huawei.com/en/support/bulletin/2025/7 • CWE-416: Use After Free •
CVSS: 4.8EPSS: %CPEs: 4EXPL: 0CVE-2025-53178
https://notcve.org/view.php?id=CVE-2025-53178
07 Jul 2025 — Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule reminder function of head units. Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule reminder function of head units. • https://consumer.huawei.com/en/support/bulletin/2025/7 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 3.9EPSS: %CPEs: 4EXPL: 0CVE-2025-53177
https://notcve.org/view.php?id=CVE-2025-53177
07 Jul 2025 — Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule syncing function of watches. Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule syncing function of watches. • https://consumer.huawei.com/en/support/bulletin/2025/7 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.6EPSS: 0%CPEs: 10EXPL: 0CVE-2025-48902
https://notcve.org/view.php?id=CVE-2025-48902
06 Jun 2025 — Vulnerability of uncontrolled system resource applications in the setting module Impact: Successful exploitation of this vulnerability may affect availability. Vulnerability of uncontrolled system resource applications in the setting module Impact: Successful exploitation of this vulnerability may affect availability. • https://consumer.huawei.com/en/support/bulletin/2025/6 • CWE-118: Incorrect Access of Indexable Resource ('Range Error') •
CVSS: 8.4EPSS: 0%CPEs: 8EXPL: 0CVE-2025-31175
https://notcve.org/view.php?id=CVE-2025-31175
07 Apr 2025 — Deserialization mismatch vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect service integrity. Deserialization mismatch vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect service integrity. • https://consumer.huawei.com/en/support/bulletin/2025/4 • CWE-502: Deserialization of Untrusted Data •
CVSS: 8.4EPSS: 0%CPEs: 4EXPL: 0CVE-2025-31170
https://notcve.org/view.php?id=CVE-2025-31170
07 Apr 2025 — Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/4 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2024-58127
https://notcve.org/view.php?id=CVE-2024-58127
07 Apr 2025 — Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/4 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2024-58126
https://notcve.org/view.php?id=CVE-2024-58126
07 Apr 2025 — Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/4 • CWE-290: Authentication Bypass by Spoofing •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2024-58125
https://notcve.org/view.php?id=CVE-2024-58125
07 Apr 2025 — Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality. • https://consumer.huawei.com/en/support/bulletin/2025/4 • CWE-290: Authentication Bypass by Spoofing •