16 matches found
EUVD-2016-9120
Malware in sbrugna...
EUVD-2016-6756
Malware in sbrugna...
EUVD-2016-5087
Malware in sbrugna...
CVE-2019-5226
P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193C00E190R2P1, versions earlier than VOGUE-AL00A 9.1.0.193C00E190R2P1, versions earlier than Hima-AL00B 9.1.0.135C00E133R2P1 and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade...
Huawei HiSuite DLL Hijacking Vulnerability
Vulnerability Description: Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. A DLL hijacking vulnerability exists in Huawei HiSuite version 4.0.5.300OVE due to the program's lack of checking for loaded system DLL files. An attacker can exploit this vulnerability ...
Huawei HiSuite Man-in-the-Middle Attack Vulnerability
Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. A security vulnerability exists in Huawei HiSuite version 4.0.5.300OVE due to the program using unencrypted HTTP to download upgrade packages and failing to check the integrity of the packages before installation...
Huawei HiSuite Information Disclosure Vulnerability
Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. An information disclosure vulnerability exists in Huawei HiSuite version 4.0.5.300OVE, due to the password box in the proxy settings screen not disabling the copy function. An attacker can exploit this vulnerabili...
CVE-2016-8273
Huawei PC client software HiSuite 4.0.5.300OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can launch an MITM attack to interrupt or replace the downloaded software package and further compromise...
Huawei HiSuite Local Information Disclosure Vulnerability
Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. A local information disclosure vulnerability exists in Huawei HiSuite, which can be exploited by attackers to obtain sensitive information...
Huawei HiSuite Local Code Execution Vulnerability
Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. A local code execution vulnerability exists in Huawei HiSuite, which could be exploited by an attacker to execute arbitrary code...
Huawei HiSuite Man-in-the-Middle Security Bypass Vulnerability
Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. A man-in-the-middle security bypass vulnerability exists in Huawei HiSuite, which could be exploited by attackers to bypass security restrictions and perform unauthorized operations, or conduct man-in-the-middle...
CVE-2016-5821
Huawei HiSuite before 4.0.4.204ove Out of China and before 4.0.4.301 China use a weak ACL FILEWRITEDATA for BUILTIN\Users for the HiSuite service directory, which allows local users to gain SYSTEM privileges via a Trojan horse 1 SspiCli.dll or 2 USERENV.dll file or possibly other unspecified DLL...
Hardcoded credentials
Huawei HiSuite before 4.0.4.204ove Out of China and before 4.0.4.301 China use a weak ACL FILEWRITEDATA for BUILTIN\Users for the HiSuite service directory, which allows local users to gain SYSTEM privileges via a Trojan horse 1 SspiCli.dll or 2 USERENV.dll file or possibly other unspecified DLL...
Huawei HiSuite Arbitrary Installation Vulnerability
Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. A security vulnerability exists in Huawei HiSuite, which can be exploited by an attacker to install arbitrary applications on a connected phone...
CVE-2016-4086
Huawei HiSuite In China before 4.0.4.301 and Out of China before 4.0.4.204ove allows remote attackers to install arbitrary apps on a connected phone via unspecified vectors...
Huawei HiSuite Arbitrary Code Execution Vulnerability
Huawei HiSuite is a set of cell phone assistant software for PC from Huawei, China. An arbitrary code execution vulnerability exists in Huawei HiSuite 4.0.3.301 and earlier versions, which originates from the program failing to properly load a DLL file. A local attacker can exploit this...