CVSS: 6.2EPSS: 0%CPEs: 10EXPL: 0CVE-2020-9119
https://notcve.org/view.php?id=CVE-2020-9119
24 Dec 2020 — There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion. Se presenta una vulnerabilidad de escalada de privilegios en algunos teléfonos inteligentes de Huawei debido a defectos de diseño. El atacante necesita contactar físicamente con el teléfono móvil y conseguir mayores privilegios, y ejecutar comand... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201202-01-smartphone-en •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1809
https://notcve.org/view.php?id=CVE-2020-1809
29 May 2020 — HUAWEI Mate 10 smartphones with versions earlier than 10.0.0.143(C00E143R2P4) have an information disclosure vulnerability. The attacker could wake up voice assistant then do a series of crafted voice operation, successful exploit could allow the attacker read certain files without unlock the phone leading to information disclosure. Los teléfonos inteligentes HUAWEI Mate 10 con versiones anteriores a la 10.0.0.143(C00E143R2P4), presentan una vulnerabilidad de divulgación de información. El atacante podría a... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200527-01-smartphone-en •
CVSS: 4.6EPSS: 0%CPEs: 50EXPL: 0CVE-2019-5264
https://notcve.org/view.php?id=CVE-2019-5264
13 Dec 2019 — There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition. Successful exploit could cause information disclosure. tiene una vulnerabilidad de divulgación de información en ciertos teléfonos inteligentes Huawei (Mate 10; Mate 10 Pro; Honor V10; Changxiang 7S; P-smart; C... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-smartphone-en •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5219
https://notcve.org/view.php?id=CVE-2019-5219
06 Jun 2019 — There is a double free vulnerability on certain drivers of Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.181(C00E87R2P20T8). An attacker tricks the user into installing a malicious application, which makes multiple processes operate the same resource at the same time. Successful exploit could cause a denial of service condition. Se presenta una vulnerabilidad de doble liberación (double free) en ciertos controladores de teléfonos inteligentes Mate10 de Huawei versiones anteriores a ALP-AL0... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190130-01-smartphone-en • CWE-415: Double Free •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5305
https://notcve.org/view.php?id=CVE-2019-5305
06 Jun 2019 — The image processing module of some Huawei Mate 10 smartphones versions before ALP-L29 9.0.0.159(C185) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can call special API, which could trigger double free and cause a system crash. El módulo de procesamiento de imágenes de algunas versiones de teléfonos inteligentes Mate 10 de Huawei anteriores a ALP-L29 9.0.0.159 (C185), presentan una vulnerabilidad de doble liberación de memoria... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190128-01-ivp-en • CWE-415: Double Free •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5214
https://notcve.org/view.php?id=CVE-2019-5214
06 Jun 2019 — There is a use after free vulnerability on certain driver component in Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.167(C00E85R2P20T8). An attacker tricks the user into installing a malicious application, which make the software to reference memory after it has been freed. Successful exploit could cause a denial of service condition. Se presenta una vulnerabilidad de uso de la memoria previamente liberada (use after free) en ciertos componentes del controlador en teléfonos inteligentes Ma... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190109-01-smartphone-en • CWE-416: Use After Free •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-7993
https://notcve.org/view.php?id=CVE-2018-7993
31 Jul 2018 — HUAWEI Mate 10 smartphones with versions earlier than ALP-AL00 8.1.0.311 have a use after free vulnerability on mediaserver component. An attacker tricks the user install a malicious application, which make the software to reference memory after it has been freed. Successful exploit could cause execution of arbitrary code. Los smartphones HUAWEI Mate 10 en versiones anteriores a la ALP-AL00 8.1.0.311 tienen una vulnerabilidad de uso de memoria previamente liberada en el componente mediaserver. Un atacante e... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180711-01-smartphone-en • CWE-416: Use After Free •
CVSS: 9.3EPSS: 0%CPEs: 16EXPL: 0CVE-2017-17227
https://notcve.org/view.php?id=CVE-2017-17227
09 Mar 2018 — GPU driver in Huawei Mate 10 smart phones with the versions before ALP-L09 8.0.0.120(C212); The versions before ALP-L09 8.0.0.127(C900); The versions before ALP-L09 8.0.0.128(402/C02/C109/C346/C432/C652) has a out-of-bounds memory access vulnerability due to the input parameters validation. An attacker tricks a user into installing a malicious application on the smart phone, and the application can call the driver with special parameter and cause accessing out-of-bounds memory. Successful exploit may result... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-smartphone-en • CWE-125: Out-of-bounds Read CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0CVE-2017-15311
https://notcve.org/view.php?id=CVE-2017-15311
22 Dec 2017 — The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120(SP2C00), before BLA-AL00 8.0.0.120(SP2C00), before MHA-AL00B 8.0.0.334(C00), and before LON-AL00B 8.0.0.334(C00) have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker c... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171125-01-baseband-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •