13 matches found
Huawei Mate 9 Pro Information Disclosure Vulnerability (CNVD-2019-41253)
Huawei Mate 9 Pro is a smartphone from Chinese company Huawei Huawei. An information disclosure vulnerability exists in Huawei Mate 9 Pro LON-L29C prior to version 8.0.0.361 C636, which originates from errors such as configuration during operation of a networked system or product. An unauthorized...
The vulnerability of the SMC-processor GLOBAL_CMD_ID_NEED_LOAD_APP in the TEE OS Trusted Core of the Huawei Mate 9 Pro mobile phone operating system allows a perpetrator to trigger a service failure, modify program algorithms (by changing the flags from TRUE/FALSE), or compromise critical data stored in physical memory.
The vulnerability of the SMC-processor GLOBALCMDIDNEEDLOADAPP in the TEE OS Trusted Core of the Huawei Mate 9 Pro mobile phone operating system is related to the lack of validation for input data. Exploiting this vulnerability can allow an attacker to cause service failures, modify program...
Vulnerability of the `init_agent2TA_context` function in the `TEEOS.img` file (offset 0x13949C) of the TEE OS Trusted Core component in the microprogramming system of the Huawei Mate 9 Pro mobile phone. This vulnerability allows an attacker to trigger a service failure or to read the virtual memory of the TEE OS at arbitrary addresses.
The vulnerability of the initagent2TAcontext function in the TEEOS.img file with a offset of 0x13949C in the SMC handler of the TEE OS Trusted Core in the microprogramming of the Huawei Mate 9 Pro mobile phone is related to the lack of validation for the remap value passed in the request...
The vulnerability of the TEEOS.img file (with a offset of 0x158608) in the SMC-processor’s GLOBAL_CMD_ID_LOAD_SECURE_APP function of the TEE OS Trusted Core in the microprogramming system of the Huawei Mate 9 Pro mobile phone. This vulnerability allows an attacker to cause a service failure, modify program algorithms (by changing the flags from TRUE/FALSE), or compromise critical data stored in physical memory.
The vulnerability of the TEEOS.img file with a offset of 0x158608 in the SMC-processor’s GLOBALCMDIDLOADSECUREAPP function of the TEE OS Trusted Core in the microprogramming of the Huawei Mate 9 Pro mobile phone is related to the swapping of an unauthorized pointer. Exploiting this vulnerability...
Vulnerability of the start_TA_task function (with a shift of 0x137F7C) in the TEE OS Trusted Core component of the operating system’s SMC handler. This vulnerability allows a malicious actor to trigger a service failure in the Huawei Mate 9 Pro mobile phone’s microprogramming system.
The vulnerability of the startTAtask function with a offset of 0x137F7C in the SMC handler of the operating system TEE OS Trusted Core in the microprogramming environment of the Huawei Mate 9 Pro mobile phone is related to the assignment of an untrusted pointer. Exploiting this vulnerability can...
CVE-2019-5244
Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361C636 versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process...
Arbitrary Memory Read/Write Vulnerability in Multiple Huawei Phones
The Huawei Mate 9 and Mate 9 Pro are both smartphone products from the Chinese company Huawei Huawei. An arbitrary memory read/write vulnerability exists in multiple Huawei phones. The vulnerability is due to insufficient input checksums in the hardware security module of some Huawei phones. An...
CVE-2018-7992
Mdapt Driver of Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro versions earlier than 8.0.0.356C00; P10 Plus versions earlier than 8.0.0.357C00 has a buffer overflow vulnerability. The driver does not sufficiently validate the input, an attacker could trick the user to install a...
CVE-2017-17320
Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install ...
CVE-2017-17225
The Near Field Communication NFC module in Huawei Mate 9 Pro mobile phones with the versions before LON-AL00B 8.0.0.340aC00 has a buffer overflow vulnerability due to the lack of input validation. An attacker may use an NFC card reader or another device to inject malicious data into a target mobi...
Huawei Mate 9 Pro Forensic Bypass Vulnerability
Huawei Mate 9 Pro is a smartphone from Huawei Huawei. A forensic bypass vulnerability in the voice wake-up module in the Huawei Mate 9 Pro phone could allow an attacker to trick a user into installing a malicious application, bypass authentication, and take control of the phone to send a short...
Huawei Mobile GPU Driver Memory Double Release Vulnerability
Huawei Mate 9 and Mate 9 Pro are both smartphone products from the Chinese company Huawei.GPU driver is one of the graphics drivers used in... A double release vulnerability exists in the GPU driver in Huawei Mate 9 versions prior to MHA-AL00B 8.0.0.334C00 and Mate 9 Pro versions prior to LON-AL0...
Huawei Mobile TEE Module Use After Free Vulnerability
The Mate 9 and Mate 9 Pro are a smartphone from Huawei China. Trusted Execution Environment TEE is a secure area on the main processor of a mobile device The Huawei Mate 9 and Mate 9 Pro phones have an Use After Free UAF security vulnerability in the TEE module. An attacker induces a user to...