Huawei Mate 9 Pro Information Disclosure Vulnerability (CNVD-2019-41253)

Huawei Mate 9 Pro is a smartphone from Chinese company Huawei Huawei. An information disclosure vulnerability exists in Huawei Mate 9 Pro LON-L29C prior to version 8.0.0.361 C636, which originates from errors such as configuration during operation of a networked system or product. An unauthorized...

Vulnerability of the `init_agent2TA_context` function in the `TEEOS.img` file (offset 0x13949C) of the TEE OS Trusted Core component in the microprogramming system of the Huawei Mate 9 Pro mobile phone. This vulnerability allows an attacker to trigger a service failure or to read the virtual memory of the TEE OS at arbitrary addresses.

The vulnerability of the initagent2TAcontext function in the TEEOS.img file with a offset of 0x13949C in the SMC handler of the TEE OS Trusted Core in the microprogramming of the Huawei Mate 9 Pro mobile phone is related to the lack of validation for the remap value passed in the request...

The vulnerability of the SMC-processor GLOBAL_CMD_ID_NEED_LOAD_APP in the TEE OS Trusted Core of the Huawei Mate 9 Pro mobile phone operating system allows a perpetrator to trigger a service failure, modify program algorithms (by changing the flags from TRUE/FALSE), or compromise critical data stored in physical memory.

The vulnerability of the SMC-processor GLOBALCMDIDNEEDLOADAPP in the TEE OS Trusted Core of the Huawei Mate 9 Pro mobile phone operating system is related to the lack of validation for input data. Exploiting this vulnerability can allow an attacker to cause service failures, modify program...

The vulnerability of the TEEOS.img file (with a offset of 0x158608) in the SMC-processor’s GLOBAL_CMD_ID_LOAD_SECURE_APP function of the TEE OS Trusted Core in the microprogramming system of the Huawei Mate 9 Pro mobile phone. This vulnerability allows an attacker to cause a service failure, modify program algorithms (by changing the flags from TRUE/FALSE), or compromise critical data stored in physical memory.

The vulnerability of the TEEOS.img file with a offset of 0x158608 in the SMC-processor’s GLOBALCMDIDLOADSECUREAPP function of the TEE OS Trusted Core in the microprogramming of the Huawei Mate 9 Pro mobile phone is related to the swapping of an unauthorized pointer. Exploiting this vulnerability...

Vulnerability of the start_TA_task function (with a shift of 0x137F7C) in the TEE OS Trusted Core component of the operating system’s SMC handler. This vulnerability allows a malicious actor to trigger a service failure in the Huawei Mate 9 Pro mobile phone’s microprogramming system.

The vulnerability of the startTAtask function with a offset of 0x137F7C in the SMC handler of the operating system TEE OS Trusted Core in the microprogramming environment of the Huawei Mate 9 Pro mobile phone is related to the assignment of an untrusted pointer. Exploiting this vulnerability can...

CVE-2019-5244

Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361C636 versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process...

Arbitrary Memory Read/Write Vulnerability in Multiple Huawei Phones

The Huawei Mate 9 and Mate 9 Pro are both smartphone products from the Chinese company Huawei Huawei. An arbitrary memory read/write vulnerability exists in multiple Huawei phones. The vulnerability is due to insufficient input checksums in the hardware security module of some Huawei phones. An...

CVE-2018-7992

Mdapt Driver of Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro versions earlier than 8.0.0.356C00; P10 Plus versions earlier than 8.0.0.357C00 has a buffer overflow vulnerability. The driver does not sufficiently validate the input, an attacker could trick the user to install a...

Huawei Mate 9 MHA-L29B Near Field Communication Component Information Disclosure Vulnerability

Huawei Mate 9 is a smartphone from Chinese company Huawei.Near Field Communication NFC moudle is one of the Near Field Communication modules. An information disclosure vulnerability exists in the NFC component in Huawei Mate 9 versions prior to MHA-L29B 8.0.0.366 C567, which stems from the progra...

CVE-2017-17320

Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install ...

CVE-2017-17225

The Near Field Communication NFC module in Huawei Mate 9 Pro mobile phones with the versions before LON-AL00B 8.0.0.340aC00 has a buffer overflow vulnerability due to the lack of input validation. An attacker may use an NFC card reader or another device to inject malicious data into a target mobi...

Huawei Mate 9 Pro Forensic Bypass Vulnerability

Huawei Mate 9 Pro is a smartphone from Huawei Huawei. A forensic bypass vulnerability in the voice wake-up module in the Huawei Mate 9 Pro phone could allow an attacker to trick a user into installing a malicious application, bypass authentication, and take control of the phone to send a short...

CVE-2017-8165

Mate 9 Huawei smart phones with versions earlier than MHA-AL00BC00B233 have a sensitive information leak vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Successful exploitation may cause sensitive information leak...

CVE-2017-17139

Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334C00; the versions before LON-AL00B 8.0.0.334C00 have a information leak vulnerability in the date service proxy implementation. An attacker may trick a user into installing a malicious application and...

CVE-2017-15311

The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120SP2C00, before BLA-AL00 8.0.0.120SP2C00, before MHA-AL00B 8.0.0.334C00, and before LON-AL00B 8.0.0.334C00 have a stack overflow vulnerability due to the lack of parameter...

Huawei Mobile GPU Driver Memory Double Release Vulnerability

Huawei Mate 9 and Mate 9 Pro are both smartphone products from the Chinese company Huawei.GPU driver is one of the graphics drivers used in... A double release vulnerability exists in the GPU driver in Huawei Mate 9 versions prior to MHA-AL00B 8.0.0.334C00 and Mate 9 Pro versions prior to LON-AL0...

CVE-2017-8142

The Trusted Execution Environment TEE module driver of Mate 9 and Mate 9 Pro smart phones with software versions earlier than MHA-AL00BC00B221 and versions earlier than LON-AL00BC00B221 has a use after free UAF vulnerability. An attacker tricks a user into installing a malicious application, and...

CVE-2017-2707

Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message...

CVE-2017-2706

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...

Huawei Mobile TEE Module Use After Free Vulnerability

The Mate 9 and Mate 9 Pro are a smartphone from Huawei China. Trusted Execution Environment TEE is a secure area on the main processor of a mobile device The Huawei Mate 9 and Mate 9 Pro phones have an Use After Free UAF security vulnerability in the TEE module. An attacker induces a user to...