CVSS: 6.8EPSS: 0%CPEs: 26EXPL: 0CVE-2020-9244
https://notcve.org/view.php?id=CVE-2020-9244
11 Aug 2020 — HUAWEI Mate 20 versions Versions earlier than 10.1.0.160(C00E160R3P8);HUAWEI Mate 20 Pro versions Versions earlier than 10.1.0.270(C431E7R1P5),Versions earlier than 10.1.0.270(C635E3R1P5),Versions earlier than 10.1.0.273(C636E7R2P4);HUAWEI Mate 20 X versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI Mate 20 RS versions Versions earlier than 10.1.0.160(C786E160R3... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200805-02-smartphone-en •
CVSS: 2.3EPSS: 0%CPEs: 8EXPL: 0CVE-2020-9252
https://notcve.org/view.php?id=CVE-2020-9252
17 Jul 2020 — HUAWEI Mate 20 versions earlier than 10.1.0.160(C00E160R3P8), HUAWEI Mate 20 X versions earlier than 10.1.0.135(C00E135R2P8), HUAWEI Mate 20 RS versions earlier than 10.1.0.160(C786E160R3P8), and Honor Magic2 smartphones versions earlier than 10.1.0.160(C00E160R2P11) have a path traversal vulnerability. The system does not sufficiently validate certain pathname from certain process, successful exploit could allow the attacker write files to a crafted path. Los teléfonos inteligentes HUAWEI Mate 20 versiones... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200715-07-smartphone-en • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 5.3EPSS: 0%CPEs: 150EXPL: 0CVE-2019-5303
https://notcve.org/view.php?id=CVE-2019-5303
27 Apr 2020 — There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en • CWE-20: Improper Input Validation •
CVSS: 5.3EPSS: 0%CPEs: 150EXPL: 0CVE-2019-5302
https://notcve.org/view.php?id=CVE-2019-5302
27 Apr 2020 — There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190814-01-mobile-en • CWE-20: Improper Input Validation •
CVSS: 4.6EPSS: 0%CPEs: 12EXPL: 0CVE-2020-1882
https://notcve.org/view.php?id=CVE-2020-1882
17 Feb 2020 — Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations. Los teléf... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200122-01-phone-en •
CVSS: 2.4EPSS: 0%CPEs: 2EXPL: 0CVE-2019-5308
https://notcve.org/view.php?id=CVE-2019-5308
29 Nov 2019 — Mate 20 RS smartphones with versions earlier than 9.1.0.135(C786E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation in ADB mode, successful exploit could allow the attacker to switch to third desktop after a series of operation. Los teléfonos inteligentes Mate 20 RS con versiones anteriores a 9.1.0.135 (C786E133R3P1), presentan una vulnerabilidad de autorización inapropiada. El software no restringe apropiadamente determinadas operaciones en modo... • https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20191127-01-smartphone-en •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2019-5230
https://notcve.org/view.php?id=CVE-2019-5230
12 Nov 2019 — P20 Pro, P20, Mate RS smartphones with versions earlier than Charlotte-AL00A 9.1.0.321(C00E320R1P1T8), versions earlier than Emily-AL00A 9.1.0.321(C00E320R1P1T8), versions earlier than NEO-AL00D NEO-AL00 9.1.0.321(C786E320R1P1T8) have an improper validation vulnerability. The system does not perform a properly validation of certain input models, an attacker could trick the user to install a malicious application then craft a malformed model, successful exploit could allow the attacker to get and tamper cert... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20190925-03-smartphone-en • CWE-20: Improper Input Validation •
CVSS: 10.0EPSS: 51%CPEs: 159EXPL: 29CVE-2019-2215 – Android Kernel Use-After-Free Vulnerability
https://notcve.org/view.php?id=CVE-2019-2215
04 Oct 2019 — A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095 Un uso de la memoria previamente liberada en el archivo binder.c, permite una elevación de privilegios desde una aplicación en el kernel de Linux. No es re... • https://packetstorm.news/files/id/156495 • CWE-416: Use After Free •
CVSS: 6.8EPSS: 0%CPEs: 2EXPL: 0CVE-2018-7929
https://notcve.org/view.php?id=CVE-2018-7929
18 Sep 2018 — Huawei Mate RS smartphones with the versions before NEO-AL00D 8.1.0.167(C786) have a lock-screen bypass vulnerability. An attacker could unlock and use the phone through certain operations. Los smartphones Huawei Mate RS en versiones anteriores a la NEO-AL00D 8.1.0.167(C786) tienen una vulnerabilidad de omisión de la pantalla de bloqueo. Un atacante podría desbloquear y emplear el teléfono mediante ciertas operaciones. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180914-01-smartphone-en • CWE-863: Incorrect Authorization •