CVSS: 6.3EPSS: 0%CPEs: 62EXPL: 0CVE-2017-17171
https://notcve.org/view.php?id=CVE-2017-17171
01 Jun 2018 — Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart. Algunos smartphones Huawei tienen una vulnerabilidad de denegación de servicio (DoS) debido al procesamiento inco... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone • CWE-20: Improper Input Validation •
CVSS: 9.3EPSS: 0%CPEs: 4EXPL: 0CVE-2016-8783
https://notcve.org/view.php?id=CVE-2016-8783
09 Mar 2018 — Touchscreen drive in Huawei H60 (Honor 6) Versions earlier than H60-L02_6.12.16 and P9 Plus Versions earlier than VIE-AL10BC00B356 has a stack overflow vulnerabilities. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to touchscreen drive to crash the system or escalate privilege. El controlador Touchscreen en Huawei H60 (Honor 6), en versiones anteriores a H60-L02_6.12.16 y P9 Plus, en versiones anteriores a VIE-AL10BC00B356, tiene una vulnerabi... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161215-01-smartphone-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.3EPSS: 0%CPEs: 2EXPL: 0CVE-2017-8140
https://notcve.org/view.php?id=CVE-2017-8140
22 Nov 2017 — The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution. El controlador soundtrigger en smartphones P9 Plus con versiones de software anteriores a la VIE-AL10BC00B353 tiene una vulnerabilidad d... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170605-01-smartphone-en • CWE-415: Double Free •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-2734
https://notcve.org/view.php?id=CVE-2017-2734
22 Nov 2017 — P9 Plus smartphones with software versions earlier before VIE-AL10BC00B386 have a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a large number of memory allocation and the smart phone will be crash for memory exhaustion. Los smartphones P9 Plus con versiones de software anteriores a la VIE-AL10BC00B386 tienen una vulnerabilidad de denegación de servici... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-02-smartphone-en • CWE-400: Uncontrolled Resource Consumption •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-2731
https://notcve.org/view.php?id=CVE-2017-2731
22 Nov 2017 — The vibrator service in P9 Plus smart phones with software versions earlier before VIE-AL10C00B386 has DoS vulnerability. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone vibrator service interface to crash the system. El servicio de vibración en smartphones P9 Plus con versiones de software anteriores a la VIE-AL10C00B386 tiene una vulnerabilidad de denegación de servicio (DoS). Un atacante puede engañar a un usuario para que ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170315-01-smartphone-en • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-2711
https://notcve.org/view.php?id=CVE-2017-2711
22 Nov 2017 — P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system. Los smartphones P9 Plus con software en versiones anteriores a la VIE-AL10C00B352 tienen una vulnerabilidad de validación de entradas en el controlador de la pantalla táctil. Un atacante puede engañar a un usuario para que ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170118-03-smartphone-en • CWE-20: Improper Input Validation •