21 matches found
EUVD-2017-11860
Malware in sbrugna...
EUVD-2017-6763
Malware in sbrugna...
EUVD-2017-17116
Malware in sbrugna...
CVE-2018-7939
CVE-2018-7939 specifies a Factory Reset Protection (FRP) bypass vulnerability in multiple Huawei/Honor smartphones (e.g., G9 Lite, Honor 5A/6X/8 and various build versions) where enabling TalkBack during FRP reconfiguration disables the boot wizard and bypasses FRP. Affected builds are listed in ...
CVE-2018-7939
Huawei smart phones G9 Lite, Honor 5A, Honor 6X, Honor 8 with the versions before VNS-L53C605B120CUSTC605D103, the versions before CAM-L03C605B143CUSTC605D008, the versions before CAM-L21C10B145, the versions before CAM-L21C185B156, the versions before CAM-L21C223B133, the versions before...
CVE-2017-8154
The Themes App Honor 8 Lite Huawei mobile phones with software of versions before Prague-L31C576B172, versions before Prague-L31C530B160, versions before Prague-L31C432B180 has a man-in-the-middle MITM vulnerability due to the use of the insecure HTTP protocol for theme download. An attacker may...
Design/Logic Flaw
The Themes App Honor 8 Lite Huawei mobile phones with software of versions before Prague-L31C576B172, versions before Prague-L31C530B160, versions before Prague-L31C432B180 has a man-in-the-middle MITM vulnerability due to the use of the insecure HTTP protocol for theme download. An attacker may...
CVE-2017-8154
The CVE-2017-8154 entry concerns Huawei/Honor devices (Themes App on Honor 8 Lite) with software versions prior to Prague-L31C576B172, Prague-L31C530B160, and Prague-L31C432B180. The underlying issue is an MITM vulnerability arising from the use of insecure HTTP to download themes, enabling an at...
CVE-2017-8154
The Themes App Honor 8 Lite Huawei mobile phones with software of versions before Prague-L31C576B172, versions before Prague-L31C530B160, versions before Prague-L31C432B180 has a man-in-the-middle MITM vulnerability due to the use of the insecure HTTP protocol for theme download. An attacker may...
Huawei Honor 8 Youth Man-in-the-Middle Attack Vulnerability
Huawei Honor 8 Youth is a smartphone device. A man-in-the-middle attack vulnerability exists in Huawei Honor 8 Youth Edition. Since the theme manager uses an insecure http protocol to download certain theme packages, an attacker may exploit this vulnerability to corrupt the downloaded theme...
CVE-2017-15307
Huawei Honor 8 smartphone with software versions earlier than FRD-L04C567B389 and earlier than FRD-L14C567B389 have a permission control vulnerability due to improper authorization configuration on specific device information...
CVE-2017-15307
Huawei Honor 8 smartphone with software versions earlier than FRD-L04C567B389 and earlier than FRD-L14C567B389 have a permission control vulnerability due to improper authorization configuration on specific device information...
Authorization
Huawei Honor 8 smartphone with software versions earlier than FRD-L04C567B389 and earlier than FRD-L14C567B389 have a permission control vulnerability due to improper authorization configuration on specific device information...
CVE-2017-15307
CVE-2017-15307 affects Huawei Honor 8 devices (versions earlier than FRD-L04C567B389 and FRD-L14C567B389). Root cause: improper authorization configuration on specific device information leading to a permission control vulnerability. Impact: potential unauthorized modification of device informati...
CVE-2017-15307
Huawei Honor 8 smartphone with software versions earlier than FRD-L04C567B389 and earlier than FRD-L14C567B389 have a permission control vulnerability due to improper authorization configuration on specific device information...
CVE-2017-2717
honor 8 Pro with software Duke-L09C10B120 and earlier versions,Duke-L09C432B120 and earlier versions,Duke-L09C636B120 and earlier versions has an integer overflow vulnerability. The attacker sends a response message to the device, which contains an illegal length field, it could produce an intege...
Integer overflow
honor 8 Pro with software Duke-L09C10B120 and earlier versions,Duke-L09C432B120 and earlier versions,Duke-L09C636B120 and earlier versions has an integer overflow vulnerability. The attacker sends a response message to the device, which contains an illegal length field, it could produce an intege...
CVE-2017-2717
CVE-2017-2717 affects Huawei Honor 8 Pro devices (Duke-L09C10B120 and earlier; Duke-L09C432B120 and earlier; Duke-L09C636B120 and earlier). Root cause: integer overflow caused by processing a response message with an illegal length field, potentially triggering a restart of the modem system. Impa...
CVE-2017-8214
CVE-2017-8214 affects Huawei/Honor smartphones (multiple models listed) with firmware versions older than a set of FRD/KNT/Stanford/Duke Picasso Barca EVA variants. The root cause is an unlock-code-verification bypass that lets an attacker with root privileges bypass unlock checks and unlock the ...
CVE-2017-2717
honor 8 Pro with software Duke-L09C10B120 and earlier versions,Duke-L09C432B120 and earlier versions,Duke-L09C636B120 and earlier versions has an integer overflow vulnerability. The attacker sends a response message to the device, which contains an illegal length field, it could produce an intege...