Huawei Mate 9 Pro Information Disclosure Vulnerability (CNVD-2019-41253)

Huawei Mate 9 Pro is a smartphone from Chinese company Huawei Huawei. An information disclosure vulnerability exists in Huawei Mate 9 Pro LON-L29C prior to version 8.0.0.361 C636, which originates from errors such as configuration during operation of a networked system or product. An unauthorized...

CVE-2019-5244

Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361C636 versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process...

Arbitrary Memory Read/Write Vulnerability in Multiple Huawei Phones

The Huawei Mate 9 and Mate 9 Pro are both smartphone products from the Chinese company Huawei Huawei. An arbitrary memory read/write vulnerability exists in multiple Huawei phones. The vulnerability is due to insufficient input checksums in the hardware security module of some Huawei phones. An...

CVE-2018-7992

Mdapt Driver of Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro versions earlier than 8.0.0.356C00; P10 Plus versions earlier than 8.0.0.357C00 has a buffer overflow vulnerability. The driver does not sufficiently validate the input, an attacker could trick the user to install a...

Huawei Mate 9 MHA-L29B Near Field Communication Component Information Disclosure Vulnerability

Huawei Mate 9 is a smartphone from Chinese company Huawei.Near Field Communication NFC moudle is one of the Near Field Communication modules. An information disclosure vulnerability exists in the NFC component in Huawei Mate 9 versions prior to MHA-L29B 8.0.0.366 C567, which stems from the progra...

CVE-2017-17320

Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install ...

CVE-2017-17225

The Near Field Communication NFC module in Huawei Mate 9 Pro mobile phones with the versions before LON-AL00B 8.0.0.340aC00 has a buffer overflow vulnerability due to the lack of input validation. An attacker may use an NFC card reader or another device to inject malicious data into a target mobi...

Huawei Mate 9 Pro Forensic Bypass Vulnerability

Huawei Mate 9 Pro is a smartphone from Huawei Huawei. A forensic bypass vulnerability in the voice wake-up module in the Huawei Mate 9 Pro phone could allow an attacker to trick a user into installing a malicious application, bypass authentication, and take control of the phone to send a short...

CVE-2017-8165

Mate 9 Huawei smart phones with versions earlier than MHA-AL00BC00B233 have a sensitive information leak vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Successful exploitation may cause sensitive information leak...

CVE-2017-17139

Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334C00; the versions before LON-AL00B 8.0.0.334C00 have a information leak vulnerability in the date service proxy implementation. An attacker may trick a user into installing a malicious application and...

CVE-2017-15311

The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120SP2C00, before BLA-AL00 8.0.0.120SP2C00, before MHA-AL00B 8.0.0.334C00, and before LON-AL00B 8.0.0.334C00 have a stack overflow vulnerability due to the lack of parameter...

Huawei Mobile GPU Driver Memory Double Release Vulnerability

Huawei Mate 9 and Mate 9 Pro are both smartphone products from the Chinese company Huawei.GPU driver is one of the graphics drivers used in... A double release vulnerability exists in the GPU driver in Huawei Mate 9 versions prior to MHA-AL00B 8.0.0.334C00 and Mate 9 Pro versions prior to LON-AL0...

CVE-2017-8142

The Trusted Execution Environment TEE module driver of Mate 9 and Mate 9 Pro smart phones with software versions earlier than MHA-AL00BC00B221 and versions earlier than LON-AL00BC00B221 has a use after free UAF vulnerability. An attacker tricks a user into installing a malicious application, and...

CVE-2017-2707

Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message...

CVE-2017-2706

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service...

Huawei Mobile TEE Module Use After Free Vulnerability

The Mate 9 and Mate 9 Pro are a smartphone from Huawei China. Trusted Execution Environment TEE is a secure area on the main processor of a mobile device The Huawei Mate 9 and Mate 9 Pro phones have an Use After Free UAF security vulnerability in the TEE module. An attacker induces a user to...

Huawei Mate 9 camerafs driver buffer overflow vulnerability

Huawei Mate9 is a smartphone from Chinese company Huawei huawei. A buffer overflow vulnerability exists in the Huawei Mate 9 camerafs driver. Due to the lack of parameter checking, an attacker induces a user to install a malicious application that has gained system privileges on Android, and the...

Huawei Mate 9 Phone Finder bypasses security vulnerability

Huawei Mate9 is a smartphone from Chinese company Huawei huawei.PhoneFinder Phone Finder is one of the security mechanisms which is mainly used to ensure that the phone is not bricked or restored to factory settings after it is lost and stolen. A security bypass vulnerability exists in the Phone...

Huawei Mobile Phone Retrieval Feature Security Bypass Vulnerability

The huawei Mate 9, P9 are smartphones from the Chinese company Huawei Huawei. The Huawei phones are vulnerable to a security bypass vulnerability in the retrieval feature, which allows an attacker to bypass the phone retrieval and access the phone's system settings page by following specific step...