Huawei Data Communication: SegmentSmack Vulnerability in Linux Kernel (huawei-sa-20181031-02-linux)

There is a DoS vulnerability in the Linux Kernel versions 4.9+ and supported versions known as a SegmentSmack attack. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

CVE-2018-7910

CVE-2018-7910 applies to several Huawei smartphones (e.g., ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C) running Android 8.x with builds such as 8.0.0.118D(C00/ C01), 8.0.0.127/128/137(C432). The flaw is an authentication bypass that lets an attacker replace the boot/startup program when t...

CVE-2018-7991

Huawei smartphones Mate10 with versions earlier before ALP-AL00B 8.0.0.110C00 have a Factory Reset Protection FRP bypass vulnerability. The system does not sufficiently verify the permission, an attacker uses a data cable to connect the smartphone to the computer and then perform some specific...

Design/Logic Flaw

RCS module in Huawei ALP-AL00B smart phones with software versions earlier than 8.0.0.129, BLA-AL00B smart phones with software versions earlier than 8.0.0.129 has a remote control vulnerability. An attacker can trick a user to install a malicious application. When the application connects with R...

CVE-2018-7901

RCS module in Huawei ALP-AL00B smart phones with software versions earlier than 8.0.0.129, BLA-AL00B smart phones with software versions earlier than 8.0.0.129 has a remote control vulnerability. An attacker can trick a user to install a malicious application. When the application connects with R...

Huawei ALP-AL00B and BLA-AL00B RCS Module Unauthorized Operation Vulnerability

Huawei ALP-AL00B and BLA-AL00B are both smartphone products from Huawei, China.RCS module is one of the converged communication modules. A security vulnerability exists in the RCS module in the Huawei ALP-AL00B before version 8.0.0.129 and the BLA-AL00B before version 8.0.0.129. An attacker can...