Lucene search
K

5 matches found

NVD
NVD
added 2017/11/22 7:29 p.m.21 views

CVE-2017-2694

The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...

4.3CVSS3.8AI score0.00519EPSS
Exploits0References2
OSV
OSV
added 2017/11/22 7:29 p.m.3 views

CVE-2017-2694

The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...

3.3CVSS5.7AI score0.00519EPSS
Exploits0References2
Prion
Prion
added 2017/11/22 7:29 p.m.12 views

Code injection

The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...

4.3CVSS3.9AI score0.00519EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2017/11/22 7:0 p.m.20 views

CVE-2017-2694

The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experienc...

3.8AI score0.00519EPSS
Exploits0References2
CNVD
CNVD
added 2017/02/10 12:0 a.m.5 views

Huawei HwVmall Local Security Bypass Vulnerability

Huawei HwVmall is a set of e-commerce platform for national service. A security vulnerability exists in the AlarmService service component in Huawei HwVmall versions prior to 1.5.2.0. The vulnerability stems from the fact that the program does not have invocation privilege control, and can be...

4.3CVSS6.8AI score0.00519EPSS
Exploits0References1
Rows per page
Query Builder