CVSS: 4.6EPSS: 0%CPEs: 50EXPL: 0CVE-2019-5264
https://notcve.org/view.php?id=CVE-2019-5264
13 Dec 2019 — There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition. Successful exploit could cause information disclosure. tiene una vulnerabilidad de divulgación de información en ciertos teléfonos inteligentes Huawei (Mate 10; Mate 10 Pro; Honor V10; Changxiang 7S; P-smart; C... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-smartphone-en •
CVSS: 5.5EPSS: 0%CPEs: 20EXPL: 0CVE-2019-5251
https://notcve.org/view.php?id=CVE-2019-5251
13 Dec 2019 — There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could cause information disclosure. Se presenta una vulnerabilidad de salto de ruta en varios teléfonos inteligentes Huawei. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191204-03-smartphone-en • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 4.6EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5217
https://notcve.org/view.php?id=CVE-2019-5217
04 Jun 2019 — There is an information disclosure vulnerability on Mate 9 Pro Huawei smartphones versions earlier than LON-AL00B9.0.1.150 (C00E61R1P8T8). An attacker could view the photos after a series of operations without unlocking the screen lock. Successful exploit could cause an information disclosure condition. Existe una vulnerabilidad de revelación de información en las versiones de teléfonos Mate 9 Pro Huawei anteriores a LON-AL00B9.0.1.150 (C00E61R1P8T8). Un atacante podría ver las fotos después de una serie de... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190417-01-smartphone-en • CWE-307: Improper Restriction of Excessive Authentication Attempts •
CVSS: 4.6EPSS: 0%CPEs: 4EXPL: 0CVE-2018-7988
https://notcve.org/view.php?id=CVE-2018-7988
27 Nov 2018 — There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker uses a data cable to connect the smartphone to another smartphone and then perform a series of specific operations. Successful exploit could allow the attacker bypass the FRP protection. Hay una vulnerabilidad de omisión de FRP (Factory Reset Protection) en algunos smartphones. El sistema no verifica lo suficiente el permiso, por lo que un atacante puede ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20181114-01-smartphone-en • CWE-863: Incorrect Authorization •
CVSS: 7.2EPSS: 0%CPEs: 16EXPL: 0CVE-2017-17176
https://notcve.org/view.php?id=CVE-2017-17176
17 Oct 2018 — The hardware security module of Mate 9 and Mate 9 Pro Huawei smart phones with the versions earlier before MHA-AL00BC00B156, versions earlier before MHA-CL00BC00B156, versions earlier before MHA-DL00BC00B156, versions earlier before MHA-TL00BC00B156, versions earlier before LON-AL00BC00B156, versions earlier before LON-CL00BC00B156, versions earlier before LON-DL00BC00B156, versions earlier before LON-TL00BC00B156 has a arbitrary memory read/write vulnerability due to the input parameters validation. An att... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170306-01-smartphone-en • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2018-7992
https://notcve.org/view.php?id=CVE-2018-7992
31 Jul 2018 — Mdapt Driver of Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro versions earlier than 8.0.0.356(C00); P10 Plus versions earlier than 8.0.0.357(C00) has a buffer overflow vulnerability. The driver does not sufficiently validate the input, an attacker could trick the user to install a malicious application which would send crafted parameters to the driver. Successful exploit could cause a denial of service condition. El controlador Mdapt de Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180725-01-dos-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2018-7940
https://notcve.org/view.php?id=CVE-2018-7940
10 May 2018 — Huawei smart phones Mate 10 and Mate 10 Pro with earlier versions than 8.0.0.129(SP2C00) and earlier versions than 8.0.0.129(SP2C01) have an authentication bypass vulnerability. An attacker with high privilege obtains the smart phone and bypass the activation function by some specific operations. Los smartphones de Huawei Mate 10 y Mate 10 Pro en versiones anteriores a la 8.0.0.129(SP2C00) y a la 8.0.0.129(SP2C01) tienen una vulnerabilidad de omisión de autenticación. Un atacante con altos privilegios obtie... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180509-01-mobile-en • CWE-287: Improper Authentication •
CVSS: 5.7EPSS: 0%CPEs: 2EXPL: 0CVE-2018-7930
https://notcve.org/view.php?id=CVE-2018-7930
11 Apr 2018 — The Near Field Communication (NFC) module in Mate 9 Huawei mobile phones with the versions before MHA-L29B 8.0.0.366(C567) has an information leak vulnerability due to insufficient validation on data transfer requests. When an affected mobile phone sends files to an attacker's mobile phone using the NFC function, the attacker can obtain arbitrary files from the mobile phone, causing information leaks. El módulo Near Field Communication (NFC) en los teléfonos móviles Mate 9 Huawei con versiones anteriores a ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180411-01-smartphone-en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2017-17320
https://notcve.org/view.php?id=CVE-2017-17320
20 Mar 2018 — Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could result in malicious code execution. Los smartphones Huawei Mate 9 Pro con software LON-AL00BC00B139D, LON-AL00BC00B229 y LON-L29DC721B188 tienen una vulnerabilidad de ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180314-02-smartphone-en • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-17324
https://notcve.org/view.php?id=CVE-2017-17324
09 Mar 2018 — Huawei Mate 9 Pro smartphones with software LON-AL00BC00B139D; LON-AL00BC00B229 have an integer overflow vulnerability. The camera driver does not validate the external input parameters and causes an integer overflow, which in the after processing results in a buffer overflow. An attacker tricks the user to install a crafted application, successful exploit could cause malicious code execution. Los smartphones Huawei Mate 9 Pro con software LON-AL00BC00B139D y LON-AL00BC00B229 tienen una vulnerabilidad de de... • http://www.huawei.com/en/psirt/security-advisories/2018/huawei-sa-20180124-01-smartphone-en • CWE-190: Integer Overflow or Wraparound •