Huawei Emui and Honor Magic Ui buffer overflow vulnerability (CNVD-2022-52826)

Huawei Emui is an Android-based mobile operating system from Huawei, China.Honor Magic Ui is an Android-based mobile operating system from Honor, China. A buffer overflow vulnerability exists in Huawei Emui and Honor Magic Ui, which can be exploited by an attacker who can exploit the vulnerabilit...

Huawei Emui and Honor Magic Ui Buffer Overflow Vulnerability

Huawei Emui is an Android-based mobile operating system developed by Huawei of China. Honor Magic Ui is an Android-based mobile operating system developed by Honor of China. Several Huawei and Honor mobile device operating systems are vulnerable to buffer overflow, which can be exploited by...

华为智能手机缓冲区错误漏洞

Huawei Emui is an Android-based mobile operating system developed by the Chinese company Huawei. Huawei EMUI suffers from an out-of-bounds write vulnerability that can be exploited by a remote attacker to submit a special ad-hoc request, which can be used to conduct a denial-of-service attack or...

Huawei Smartphone Buffer Error Vulnerability

Huawei Emui is an Android-based mobile operating system from China's Huawei.Honor Magic Ui is an Android-based mobile operating system from China's Honor. A buffer error vulnerability exists in Huawei smartphones, which can be exploited by an attacker to make application processes abnormal...

Huawei Emui 和 Honor Magic Ui 缓冲区错误漏洞

Huawei Emui is an Android-based mobile operating system developed by Huawei of China. Honor Magic Ui is an Android-based mobile operating system developed by Honor of China. Several Huawei and Honor mobile device operating systems are vulnerable to buffer overflow, which can be exploited by...

华为智能手机缓冲区错误漏洞

Huawei Emui is an Android-based mobile operating system developed by Huawei of China. Huawei EMUI is vulnerable to a heap overflow vulnerability, which can be exploited by remote attackers to submit special ad hoc requests that can perform denial-of-service attacks or execute arbitrary code in...

Huawei smartphone data forgery issue vulnerability

Huawei Emui is an Android-based mobile operating system from China's Huawei Corporation.Honor Magic Ui is an Android-based mobile operating system from China's Honor Corporation. Huawei smartphones are vulnerable to a data forgery issue, successful exploitation of this vulnerability may result in...

Mozilla Firefox Information Disclosure Vulnerability (CNVD-2021-54004)

Mozilla Firefox is an open source Web browser from the Mozilla Foundation in the U.S. Versions prior to Mozilla Firefox 80 and versions prior to Android-based Firefox 80 are vulnerable to an information disclosure vulnerability that could be exploited by an attacker to obtain the login status of ...

Unspecified Vulnerability in Samsung Mobile Devices (CNVD-2020-32802)

Android is a Linux-based open source operating system jointly developed by Google Inc. and the Open Handheld Alliance OHA for short. Samsung mobile devices are vulnerable to a vulnerability that can be exploited by attackers to cause a system crash, resulting in a denial of service...

Android-Based Sony Smart-TVs Open to Image Pilfering

Two vulnerabilities in Android-based smart-TVs from Sony, including the flagship Bravia line, could allow attackers to access WiFi passwords and images stored on the devices. The bugs exist in the Photo Sharing Plus feature of Sony smart-TVs going back to 2015. They were uncovered by xen1thLabs i...

Crestron Multiple Products CTP Console DIR Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the DIR command of the CTP console. The issue results from the lack ...

Crestron Multiple Products CTP Console CD Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the CD command of the CTP console. The issue results from the lack o...

Crestron Multiple Products CTP Console ROUTEADD Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ROUTEADD command of the CTP console. The issue results from the...

Crestron Multiple Products CTP Console PING Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the PING command of the CTP console. The issue results from the lack...

Crestron Multiple Products CTP Console MOVEFILE Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the MOVE command of the CTP console. The issue results from the lack...

Crestron Multiple Products CTP Console ISDIR Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ISDIR command of the CTP console. The issue results from the lac...

Crestron Multiple Products CTP Console FPUTFILE Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the FPUTFILE command of the CTP console. The issue results from the...

Crestron Multiple Products CTP Console UPDATEPASSWORD Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is required to exploit this vulnerability. The specific flaw exists within the UPDATEPASSWORD command of the CTP console. The issue results from th...

Crestron Multiple Products CTP Console ROUTEDELETE Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the ROUTEDELETE command of the CTP console. The issue results from t...

Crestron Multiple Products CTP Console WIFISSID Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Crestron's Android-based products. Authentication is not required to exploit this vulnerability. The specific flaw exists within the WIFISSID command of the CTP console. The issue results from the...