5 matches found
Huawei Mate 9 Pro Information Disclosure Vulnerability (CNVD-2019-41253)
Huawei Mate 9 Pro is a smartphone from Chinese company Huawei Huawei. An information disclosure vulnerability exists in Huawei Mate 9 Pro LON-L29C prior to version 8.0.0.361 C636, which originates from errors such as configuration during operation of a networked system or product. An unauthorized...
Vulnerability of the `init_agent2TA_context` function in the `TEEOS.img` file (offset 0x13949C) of the TEE OS Trusted Core component in the microprogramming system of the Huawei Mate 9 Pro mobile phone. This vulnerability allows an attacker to trigger a service failure or to read the virtual memory of the TEE OS at arbitrary addresses.
The vulnerability of the initagent2TAcontext function in the TEEOS.img file with a offset of 0x13949C in the SMC handler of the TEE OS Trusted Core in the microprogramming of the Huawei Mate 9 Pro mobile phone is related to the lack of validation for the remap value passed in the request...
Vulnerability of the start_TA_task function (with a shift of 0x137F7C) in the TEE OS Trusted Core component of the operating system’s SMC handler. This vulnerability allows a malicious actor to trigger a service failure in the Huawei Mate 9 Pro mobile phone’s microprogramming system.
The vulnerability of the startTAtask function with a offset of 0x137F7C in the SMC handler of the operating system TEE OS Trusted Core in the microprogramming environment of the Huawei Mate 9 Pro mobile phone is related to the assignment of an untrusted pointer. Exploiting this vulnerability can...
CVE-2019-5244
Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361C636 versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process...
CVE-2017-17320
Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install ...