Lucene search
+L

5 matches found

cnvd
cnvd
added 2019/11/19 12:0 a.m.8 views

Huawei Mate 9 Pro Information Disclosure Vulnerability (CNVD-2019-41253)

Huawei Mate 9 Pro is a smartphone from Chinese company Huawei Huawei. An information disclosure vulnerability exists in Huawei Mate 9 Pro LON-L29C prior to version 8.0.0.361 C636, which originates from errors such as configuration during operation of a networked system or product. An unauthorized...

5.5CVSS6AI score0.00658EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2019/06/21 12:0 a.m.6 views

Vulnerability of the `init_agent2TA_context` function in the `TEEOS.img` file (offset 0x13949C) of the TEE OS Trusted Core component in the microprogramming system of the Huawei Mate 9 Pro mobile phone. This vulnerability allows an attacker to trigger a service failure or to read the virtual memory of the TEE OS at arbitrary addresses.

The vulnerability of the initagent2TAcontext function in the TEEOS.img file with a offset of 0x13949C in the SMC handler of the TEE OS Trusted Core in the microprogramming of the Huawei Mate 9 Pro mobile phone is related to the lack of validation for the remap value passed in the request...

6.7CVSS5.6AI score
Exploits0
bdu_fstec
bdu_fstec
added 2019/06/21 12:0 a.m.20 views

Vulnerability of the start_TA_task function (with a shift of 0x137F7C) in the TEE OS Trusted Core component of the operating system’s SMC handler. This vulnerability allows a malicious actor to trigger a service failure in the Huawei Mate 9 Pro mobile phone’s microprogramming system.

The vulnerability of the startTAtask function with a offset of 0x137F7C in the SMC handler of the operating system TEE OS Trusted Core in the microprogramming environment of the Huawei Mate 9 Pro mobile phone is related to the assignment of an untrusted pointer. Exploiting this vulnerability can...

4.9CVSS5.5AI score
Exploits0
osv
osv
added 2019/06/04 6:29 p.m.4 views

CVE-2019-5244

Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361C636 versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process...

5.5CVSS6.1AI score0.00658EPSS
Exploits0References1
osv
osv
added 2018/03/20 3:29 p.m.4 views

CVE-2017-17320

Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install ...

7.8CVSS5.9AI score0.01009EPSS
Exploits0References1
Rows per page
Query Builder