217 matches found
EUVD-2017-17178
Malware in sbrugna...
EUVD-2019-14841
Malware in sbrugna...
EUVD-2017-17174
Malware in sbrugna...
CVE-2020-1872
Huawei smart phones P10 Plus with versions earlier than 9.1.0.201C01E75R1P12T8, earlier than 9.1.0.252C185E2R1P9T8, earlier than 9.1.0.252C432E4R1P9T8, and earlier than 9.1.0.255C576E6R1P8T8 have a digital balance bypass vulnerability. When re-configuring the mobile phone at the digital balance...
CVE-2019-5236
Huawei smart phones Emily-L29C with versions of 8.1.0.132aC432, 8.1.0.135C782, 8.1.0.154C10, 8.1.0.154C461, 8.1.0.154C635, 8.1.0.156C185, 8.1.0.156C605, 8.1.0.159C636 have a double free vulnerability. An attacker can trick a user to click a URL to exploit this vulnerability. Successful exploitati...
Privilege escalation
There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion...
CVE-2020-9083
CVE-2020-9083 affects Huawei Mate 20 smartphones running versions earlier than 10.1.0.163 (C00E160R3P8). The DoS arises from insufficient verification when the attacker enters a large amount of text, potentially impacting service availability. Connected documents corroborate the vulnerability des...
Security Advisory - DoS Vulnerability in Some Huawei Smart Phones
There is a denial of service DoS vulnerability in some Huawei smart phones. The attacker can enter a large amount of text on the phone. Due to insufficient verification of the parameter, successful exploitation can impact the service. Vulnerability ID: HWPSIRT-2019-09107 This vulnerability has be...
Security Advisory - Information Exposure Vulnerability in Some Huawei Smart Phones
There is an information exposure vulnerability in some Huawei smart phones. The system does not properly authenticate the application that access a specified interface. Attackers can trick users into installing malicious software to exploit this vulnerability and obtain some information about the...
CVE-2020-9227
Huawei Smart Phones Moana-AL00B with versions earlier than 10.1.0.166 have a missing initialization of resource vulnerability. An attacker tricks the user into installing then running a crafted application. Due to improper initialization of specific parameters, successful exploit of this...
Design/Logic Flaw
Huawei Smart Phones Moana-AL00B with versions earlier than 10.1.0.166 have a missing initialization of resource vulnerability. An attacker tricks the user into installing then running a crafted application. Due to improper initialization of specific parameters, successful exploit of this...
CVE-2020-9227
Huawei Smart Phones Moana-AL00B with versions earlier than 10.1.0.166 have a missing initialization of resource vulnerability. An attacker tricks the user into installing then running a crafted application. Due to improper initialization of specific parameters, successful exploit of this...
CVE-2020-9227
CVE-2020-9227 affects Huawei Moana-AL00B smartphones with firmware older than 10.1.0.166, due to missing initialization of resources from improper parameter initialization. This may allow an attacker to trick a user into installing and executing a crafted app, potentially causing device exception...
Security feature bypass
Huawei smart phones have a Factory Reset Protection FRP bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection FRP function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products...
Security Advisory - Digital Balance Bypass Vulnerability in Huawei Smart Phones
There is a digital balance bypass vulnerability in some Huawei smart phones. When re-configuring the mobile phone at the digital balance mode, an attacker can perform some operations to bypass the startup wizard, and then open some switch. As a result, the digital balance function is bypassed...
Authentication flaw
HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175C00E70R3P8 have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to exploit this vulnerability. Successful exploitation may cause information leak and compromise the...
Security Advisory - Insufficient Authentication Vulnerability in Some Huawei Smart Phones
There is an insufficient authentication vulnerability in some Huawei smart phones. A local attacker with high privilege can execute a specific command to exploit this vulnerability. Successful exploitation may cause information leak and compromise the availability of the smart phones. Vulnerabili...
Security Advisory - FRP Bypass Vulnerability in Huawei Smart Phones
There is a Factory Reset Protection FRP bypass security vulnerability in some Huawei smart phones. When re-configuring the mobile phone using the factory reset protection FRP function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. As a...
Security Advisory - Information Leak Vulnerability in Some Huawei Smart Phones
There is an information leak vulnerability in some Huawei smart phones. An attacker could send specific command in the local area network LAN to exploit this vulnerability. Successful exploitation may cause information leak. Vulnerability ID: HWPSIRT-2019-10001 This vulnerability has been assigne...
CVE-2019-5276
Huawei CVE-2019-5276 describes a buffer overflow in ELLE-AL00B smartphones prior to version 9.1.0.222 (C00E220R2P1). The issue allows an attacker on the same LAN to intercept and tamper data, triggering abnormal device behavior. Connected sources (Huawei PSIRT advisory HWPSIRT-2019-09447 and Red ...