CVSS: 4.6EPSS: 0%CPEs: 50EXPL: 0CVE-2019-5264
https://notcve.org/view.php?id=CVE-2019-5264
13 Dec 2019 — There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition. Successful exploit could cause information disclosure. tiene una vulnerabilidad de divulgación de información en ciertos teléfonos inteligentes Huawei (Mate 10; Mate 10 Pro; Honor V10; Changxiang 7S; P-smart; C... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191211-01-smartphone-en •
CVSS: 7.2EPSS: 0%CPEs: 16EXPL: 0CVE-2017-17176
https://notcve.org/view.php?id=CVE-2017-17176
17 Oct 2018 — The hardware security module of Mate 9 and Mate 9 Pro Huawei smart phones with the versions earlier before MHA-AL00BC00B156, versions earlier before MHA-CL00BC00B156, versions earlier before MHA-DL00BC00B156, versions earlier before MHA-TL00BC00B156, versions earlier before LON-AL00BC00B156, versions earlier before LON-CL00BC00B156, versions earlier before LON-DL00BC00B156, versions earlier before LON-TL00BC00B156 has a arbitrary memory read/write vulnerability due to the input parameters validation. An att... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170306-01-smartphone-en • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0CVE-2018-7992
https://notcve.org/view.php?id=CVE-2018-7992
31 Jul 2018 — Mdapt Driver of Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro versions earlier than 8.0.0.356(C00); P10 Plus versions earlier than 8.0.0.357(C00) has a buffer overflow vulnerability. The driver does not sufficiently validate the input, an attacker could trick the user to install a malicious application which would send crafted parameters to the driver. Successful exploit could cause a denial of service condition. El controlador Mdapt de Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180725-01-dos-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2018-7940
https://notcve.org/view.php?id=CVE-2018-7940
10 May 2018 — Huawei smart phones Mate 10 and Mate 10 Pro with earlier versions than 8.0.0.129(SP2C00) and earlier versions than 8.0.0.129(SP2C01) have an authentication bypass vulnerability. An attacker with high privilege obtains the smart phone and bypass the activation function by some specific operations. Los smartphones de Huawei Mate 10 y Mate 10 Pro en versiones anteriores a la 8.0.0.129(SP2C00) y a la 8.0.0.129(SP2C01) tienen una vulnerabilidad de omisión de autenticación. Un atacante con altos privilegios obtie... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180509-01-mobile-en • CWE-287: Improper Authentication •
CVSS: 5.7EPSS: 0%CPEs: 2EXPL: 0CVE-2018-7930
https://notcve.org/view.php?id=CVE-2018-7930
11 Apr 2018 — The Near Field Communication (NFC) module in Mate 9 Huawei mobile phones with the versions before MHA-L29B 8.0.0.366(C567) has an information leak vulnerability due to insufficient validation on data transfer requests. When an affected mobile phone sends files to an attacker's mobile phone using the NFC function, the attacker can obtain arbitrary files from the mobile phone, causing information leaks. El módulo Near Field Communication (NFC) en los teléfonos móviles Mate 9 Huawei con versiones anteriores a ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180411-01-smartphone-en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8165
https://notcve.org/view.php?id=CVE-2017-8165
05 Mar 2018 — Mate 9 Huawei smart phones with versions earlier than MHA-AL00BC00B233 have a sensitive information leak vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Successful exploitation may cause sensitive information leak. Los smartphones Huawei Mate 9 con versiones anteriores a la MHA-AL00BC00B233 tienen una vulnerabilidad de filtrado de información sensible. Un atacante puede engañar a un usuario para que instale una aplicación maliciosa para explotar ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171117-01-smartphone-en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2017-17139
https://notcve.org/view.php?id=CVE-2017-17139
05 Mar 2018 — Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334(C00); the versions before LON-AL00B 8.0.0.334(C00) have a information leak vulnerability in the date service proxy implementation. An attacker may trick a user into installing a malicious application and application can exploit the vulnerability to get kernel date which may cause sensitive information leak. Los smartphones Huawei Mate 9 y Mate 9 pro con software en versiones anteriores a la MHA-AL00B 8.0.0.334(C0... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-04-smartphone-en • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 8EXPL: 0CVE-2017-15311
https://notcve.org/view.php?id=CVE-2017-15311
22 Dec 2017 — The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120(SP2C00), before BLA-AL00 8.0.0.120(SP2C00), before MHA-AL00B 8.0.0.334(C00), and before LON-AL00B 8.0.0.334(C00) have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker c... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171125-01-baseband-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2017-15316 – Huawei Mate 9 Pro Mali Double Free Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2017-15316
22 Dec 2017 — The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B 8.0.0.334(C00) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can call special API, which triggers double free and causes a system crash or arbitrary code execution. El controlador de unidad de procesamiento gráfico o GPU de los smartphones Mate 9de Huawei con software anter... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171201-01-smartphone-en • CWE-415: Double Free •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2017-2716
https://notcve.org/view.php?id=CVE-2017-2716
22 Nov 2017 — The camerafs driver in Mate 9 Versions earlier than MHA-AL00BC00B173 has buffer overflow vulnerability. An attacker tricks a user into installing a malicious application which has the system privilege of the Android system and sends a specific parameter to the driver of the smart phone, causing a system crash or privilege escalation. El controlador camerafs en Mate 9 en versiones anteriores a la MHA-AL00BC00B173 tiene una vulnerabilidad de desbordamiento de búfer. Un atacante engaña a un usuario para que in... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170426-02-smartphone-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •