CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2021-22306
https://notcve.org/view.php?id=CVE-2021-22306
06 Feb 2021 — There is an out-of-bound read vulnerability in Mate 30 10.0.0.182(C00E180R6P2). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause out-of-bound, compromising normal service. Se presenta una vulnerabilidad de lectura fuera de límites en Mate 30 versión 10.0.0.182(C00E180R6P2). • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210127-05-smartphone-en • CWE-125: Out-of-bounds Read •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9125
https://notcve.org/view.php?id=CVE-2020-9125
29 Dec 2020 — There is an out-of-bound read vulnerability in huawei smartphone Mate 30 versions earlier than 10.1.0.156 (C00E155R7P2). An attacker with specific permission can exploit this vulnerability by sending crafted packet with specific parameter to the target device. Due to insufficient validation of the parameter, successful exploit can cause the device to behave abnormally. Se presenta una vulnerabilidad de lectura fuera de límite en el teléfono inteligente Huawei Mate 30 versiones anteriores a 10.1.0.156(C00E15... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201216-01-taurus-en • CWE-125: Out-of-bounds Read •
CVSS: 6.2EPSS: 0%CPEs: 10EXPL: 0CVE-2020-9119
https://notcve.org/view.php?id=CVE-2020-9119
24 Dec 2020 — There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion. Se presenta una vulnerabilidad de escalada de privilegios en algunos teléfonos inteligentes de Huawei debido a defectos de diseño. El atacante necesita contactar físicamente con el teléfono móvil y conseguir mayores privilegios, y ejecutar comand... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201202-01-smartphone-en •
CVSS: 6.7EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9129
https://notcve.org/view.php?id=CVE-2020-9129
13 Nov 2020 — HUAWEI Mate 30 versions earlier than 10.1.0.159(C00E159R7P2) have a vulnerability of improper buffer operation. Due to improper restrictions, local attackers with high privileges can exploit the vulnerability to cause system heap overflow. HUAWEI Mate 30 versiones anteriores a 10.1.0.159(C00E159R7P2), presentan una vulnerabilidad de funcionamiento inapropiado del búfer. Debido a restricciones inapropiadas, unos atacantes locales con privilegios elevados pueden explotar la vulnerabilidad para causar un ... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20201111-01-smartphone-en • CWE-787: Out-of-bounds Write •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2020-9263
https://notcve.org/view.php?id=CVE-2020-9263
19 Oct 2020 — HUAWEI Mate 30 versions earlier than 10.1.0.150(C00E136R5P3) and HUAWEI P30 version earlier than 10.1.0.160(C00E160R2P11) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the attacker should trick the user into running a crafted application with common privilege, successful exploit could cause code execution. HUAWEI Mate 30 versiones anteriores a 10.1.0.150(C00E136R5P3) y HUAWEI P30 versiones anterior a 10.1.0.160(C00E160R2P11),... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-07-smartphone-en • CWE-416: Use After Free •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9243
https://notcve.org/view.php?id=CVE-2020-9243
10 Aug 2020 — HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a denial of service vulnerability. The system does not properly limit the depth of recursion, an attacker should trick the user installing and execute a malicious application. Successful exploit could cause a denial of service condition. HUAWEI Mate 30 con versiones anteriores a 10.1.0.150(C00E136R5P3) presenta una vulnerabilidad de denegación de servicio. El sistema no limita apropiadamente la profundidad de recursión, un atacante deber... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200805-03-smartphone-en • CWE-674: Uncontrolled Recursion •
CVSS: 6.3EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1839
https://notcve.org/view.php?id=CVE-2020-1839
06 Jul 2020 — HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a race condition vulnerability. There is a timing window exists in which certain pointer members can be modified by another process that is operating concurrently, an attacker should trick the user into running a crafted application with high privilege, successful exploit could cause code execution. HUAWEI Mate 30 con versiones anteriores a 10.1.0.150(C00E136R5P3), presenta una vulnerabilidad de condición de carrera. Se presenta una vent... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-04-smartphone-en • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9261
https://notcve.org/view.php?id=CVE-2020-9261
06 Jul 2020 — HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a type confusion vulnerability. The system does not properly check and transform the type of certain variable, the attacker tricks the user into installing then running a crafted application, successful exploit could cause code execution. HUAWEI Mate 30 con versiones anteriores a 10.1.0.150(C00E136R5P3), presenta una vulnerabilidad de confusión de tipo. El sistema no comprueba y ni transforma apropiadamente el tipo de determinada variabl... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-05-smartphone-en • CWE-843: Access of Resource Using Incompatible Type ('Type Confusion') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2020-9262
https://notcve.org/view.php?id=CVE-2020-9262
06 Jul 2020 — HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the attacker should trick the user into running a crafted application with high privilege, successful exploit could cause code execution. HUAWEI Mate 30 con versiones anteriores a 10.1.0.150(C00E136R5P3), presenta una vulnerabilidad de uso de la memoria previamente liberada. Se presenta una condición en la que el si... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200701-06-smartphone-en • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2020-1835
https://notcve.org/view.php?id=CVE-2020-1835
18 Jun 2020 — HUAWEI Mate 30 with versions earlier than 10.1.0.126(C00E125R5P3) have an information disclosure vulnerability. A logic judgment error occurs when the system handling Bluetooth connections, an attacker could craft as an authenticated Bluetooth peer to launch the attack. Successful exploit could cause information disclosure. HUAWEI Mate 30 con versiones anteriores a 10.1.0.126(C00E125R5P3), presenta una vulnerabilidad de divulgación de información. Un error de juicio lógico ocurre cuando el sistema maneja co... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200617-02-smartphone-en •