19 matches found
EUVD-2019-14826
Malware in sbrugna...
CVE-2020-9109
There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful...
Information disclosure
There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful...
CVE-2020-9109
CVE-2020-9109 affects several Huawei smartphones (e.g., Mate 20, Mate 20 X, P30 Pro, Laya-AL00EP, Tony-AL00B/TL00B) with an information-disclosure vulnerability caused by insufficient validation of the identity of a smart wearable device in specific scenarios. The attacker would need access to ce...
CVE-2020-9244
HUAWEI Mate 20 versions Versions earlier than 10.1.0.160C00E160R3P8;HUAWEI Mate 20 Pro versions Versions earlier than 10.1.0.270C431E7R1P5,Versions earlier than 10.1.0.270C635E3R1P5,Versions earlier than 10.1.0.273C636E7R2P4;HUAWEI Mate 20 X versions Versions earlier than...
CVE-2020-9244
CVE-2020-9244 concerns Huawei smartphone firmware where multiple models (Mate 20, Mate 20 Pro, Mate 20 X, Mate 20 RS; P30/P30 Pro; Honor Magic2, Honor 20/20 Pro, HonorV20, etc.) are affected by an improper authentication vulnerability. The issue arises because the system does not properly sign ce...
CVE-2020-9252
HUAWEI Mate 20 versions earlier than 10.1.0.160C00E160R3P8, HUAWEI Mate 20 X versions earlier than 10.1.0.135C00E135R2P8, HUAWEI Mate 20 RS versions earlier than 10.1.0.160C786E160R3P8, and Honor Magic2 smartphones versions earlier than 10.1.0.160C00E160R2P11 have a path traversal vulnerability...
CVE-2020-9252
HUAWEI Mate 20 versions earlier than 10.1.0.160C00E160R3P8, HUAWEI Mate 20 X versions earlier than 10.1.0.135C00E135R2P8, HUAWEI Mate 20 RS versions earlier than 10.1.0.160C786E160R3P8, and Honor Magic2 smartphones versions earlier than 10.1.0.160C00E160R2P11 have a path traversal vulnerability...
CVE-2020-9252
CVE-2020-9252 affects HUAWEI Mate 20 (pre-10.1.0.160), Mate 20 X (pre-10.1.0.135), Mate 20 RS (pre-10.1.0.160) and Honor Magic2 (pre-10.1.0.160). The issue is a path traversal vulnerability caused by insufficient validation of certain pathname handling from a process, enabling a crafted path to w...
CVE-2020-1882
Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180C185E6R3P3, earlier than 10.0.0.180C432E6R1P7, earlier than 10.0.0.180C636E5R2P3; HUAWEI Mate 20 RS versions earlier than 10.0.0.175C786E70R3P8; HUAWEI Mate 20 X versions earlier than 10.0.0.176C00E70R2P8; and Honor Magic2 versions...
CVE-2019-5220
There is a Factory Reset Protection FRP bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step of setup wizard. Successful exploit could allow the attacker bypass the FRP protection. Affected...
CVE-2019-5221
There is a path traversal vulnerability on Huawei Share. The software does not properly validate the path, an attacker could crafted a file path when transporting file through Huawei Share, successful exploit could allow the attacker to transport a file to arbitrary path on the phone. Affected...
CVE-2019-5221
There is a path traversal vulnerability on Huawei Share. The software does not properly validate the path, an attacker could crafted a file path when transporting file through Huawei Share, successful exploit could allow the attacker to transport a file to arbitrary path on the phone. Affected...
CVE-2019-5220
There is a Factory Reset Protection FRP bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step of setup wizard. Successful exploit could allow the attacker bypass the FRP protection. Affected...
Design/Logic Flaw
There is a Factory Reset Protection FRP bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step of setup wizard. Successful exploit could allow the attacker bypass the FRP protection. Affected...
CVE-2019-5221
There is a path traversal vulnerability on Huawei Share. The software does not properly validate the path, an attacker could crafted a file path when transporting file through Huawei Share, successful exploit could allow the attacker to transport a file to arbitrary path on the phone. Affected...
CVE-2019-5221
Summary: CVE-2019-5221 is a path traversal vulnerability in Huawei Share. Huawei’s security advisory HWPSIRT-2019-03115 confirms an improper validation of the destination path during file transfer, enabling an attacker to place files at arbitrary paths on affected devices. Affected devices includ...
CVE-2019-5220
There is a Factory Reset Protection FRP bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step of setup wizard. Successful exploit could allow the attacker bypass the FRP protection. Affected...
CVE-2019-5220
CVE-2019-5220 describes a Factory Reset Protection (FRP) bypass on Huawei Mate 20 X, Mate 20 and Honor Magic 2. Affected versions are Mate 20 X prior to Ever-AL00B 9.0.0.200, Mate 20 prior to Hima-AL00B/Hima-TL00B 9.0.0.200, and Honor Magic 2 prior to Tony-AL00B/Tony-TL00B 9.0.0.182. Root cause: ...