CVE-2021-22440

There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly...

CVE-2021-22440

There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly...

CVE-2020-9109

There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful...

CVE-2020-9109

There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful...

Information disclosure

There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful...

CVE-2020-9109

CVE-2020-9109 affects several Huawei smartphones (e.g., Mate 20, Mate 20 X, P30 Pro, Laya-AL00EP, Tony-AL00B/TL00B) with an information-disclosure vulnerability caused by insufficient validation of the identity of a smart wearable device in specific scenarios. The attacker would need access to ce...

CVE-2020-9076

HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135C00E135R2P11; versions earlier than 10.1.0.135C00E135R2P8, versions earlier than 10.1.0.135 have an improper authentication vulnerability. Due to the identity of the message sender not being properly verified, a...

Multiple Huawei products improperly certified for vulnerability

The Huawei P30, among others, is a smartphone from the Chinese company Huawei Huawei. A security vulnerability exists in Huawei P30, P30 Pro and Tony-AL00B that stems from the program not properly authenticating the identity of the message sender. An attacker can exploit the vulnerability by...

Huawei Honor Magic 2 Information Disclosure Vulnerability

Huawei Honor Magic 2 is a smartphone from Chinese company Huawei Huawei. An information disclosure vulnerability exists in the secure keyboard feature in previous versions of the Huawei Honor Magic 2 Tony-AL00B 9.1.0.216C00E214R2P1, which stems from the program's failure to properly restrict syst...

CVE-2019-5222

There is an information disclosure vulnerability on Secure Input of certain Huawei smartphones in Versions earlier than Tony-AL00B 9.1.0.216C00E214R2P1. The Secure Input does not properly limit certain system privilege. An attacker tricks the user to install a malicious application and successful...