CVE-2021-22440

There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly...

CVE-2020-9113

HUAWEI Mate 20 versions earlier than 10.0.0.188C00E74R3P8 have a buffer overflow vulnerability in the Bluetooth module. Due to insufficient input validation, an unauthenticated attacker may craft Bluetooth messages after successful paring, causing buffer overflow. Successful exploit may cause cod...

CVE-2020-9109

There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful...

CVE-2020-9244

HUAWEI Mate 20 versions Versions earlier than 10.1.0.160C00E160R3P8;HUAWEI Mate 20 Pro versions Versions earlier than 10.1.0.270C431E7R1P5,Versions earlier than 10.1.0.270C635E3R1P5,Versions earlier than 10.1.0.273C636E7R2P4;HUAWEI Mate 20 X versions Versions earlier than...

CVE-2020-1794

There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to gain certain data of the application which is locked. Affected product versions include:HUAWEI Ma...

Huawei Mate 20 and Mate 30 Pro License Issue Vulnerability

The Huawei Mate 20 and Mate 30 Pro are both smartphones from the Chinese company Huawei Huawei. An authorization issue vulnerability exists in Huawei Mate 20 before 10.0.0.188 C00E74R3P8 and Mate 30 Pro before 10.0.0.203 C00E202R7P2, which stems from the system's failure to properly authorize...

Huawei Mate 20 and Mate 30 Pro License Issue Vulnerability (CNVD-2020-22000)

The Huawei Mate 20 and Mate 30 Pro are both smartphones from the Chinese company Huawei Huawei. An authorization issue vulnerability exists in Huawei Mate 20 before 10.0.0.188 C00E74R3P8 and Mate 30 Pro before 10.0.0.203 C00E202R7P2, which stems from the app locking feature failing to perform...

CVE-2020-1882

Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180C185E6R3P3, earlier than 10.0.0.180C432E6R1P7, earlier than 10.0.0.180C636E5R2P3; HUAWEI Mate 20 RS versions earlier than 10.0.0.175C786E70R3P8; HUAWEI Mate 20 X versions earlier than 10.0.0.176C00E70R2P8; and Honor Magic2 versions...

CVE-2019-5250

Mate 20 Pro smartphones with versions earlier than 9.1.0.135C00E133R3P1 have an improper authorization vulnerability. The software does not properly restrict certain operation of certain privilege, the attacker could trick the user into installing a malicious application before the user turns on...

CVE-2019-5308

Mate 20 RS smartphones with versions earlier than 9.1.0.135C786E133R3P1 have an improper authorization vulnerability. The software does not properly restrict certain operation in ADB mode, successful exploit could allow the attacker to switch to third desktop after a series of operation...

CVE-2019-5225

P30, Mate 20, P30 Pro smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193C00E190R1P21, versions earlier than Hima-AL00B 9.1.0.135C00E200R2P1, versions earlier than VOGUE-AL00A 9.1.0.193C00E190R1P12 have a buffer overflow vulnerability on several , the system does not properly...

CVE-2019-5226

P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193C00E190R2P1, versions earlier than VOGUE-AL00A 9.1.0.193C00E190R2P1, versions earlier than Hima-AL00B 9.1.0.135C00E133R2P1 and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade...

Huawei Mate 20 X, Mate 20 and Honor Magic 2 security bypass vulnerability

Huawei Mate 20, among others, is a smartphone from the Chinese company Huawei Huawei. A security vulnerability exists in the Huawei Mate 20 X, Mate 20, and Honor Magic 2, which stems from the system's inadequate verification of permissions. An attacker can exploit the vulnerability to bypass FRP...

Huawei VIP Application Service Information Disclosure Vulnerability

Huawei VIP App is a mobile application service. The app mainly serves Malaysian users who have purchased P20 series, Nova3/3i and Mate 20. The Huawei VIP App service is vulnerable to information leakage. A brute force attacker could obtain some of the user's information...