49 matches found
EUVD-2020-29939
Malware in sbrugna...
EUVD-2020-29920
Malware in sbrugna...
EUVD-2020-30067
Malware in sbrugna...
EUVD-2020-29913
Malware in sbrugna...
CVE-2020-9240
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have a buffer overflow vulnerability. A function in a module does not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device...
CVE-2020-9238
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have a buffer overflow vulnerability. A function in a module does not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device...
CVE-2020-9105
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to access and modify the memory of the device by doing a series of operations. Successful exploi...
CVE-2020-9110
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have an information disclosure vulnerability. The device does not sufficiently validate the output of device in certain specific scenario, the attacker can gain information in the victim's smartphone to launch the attack, successful exploit...
CVE-2020-9084
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have a use-after-free UAF vulnerability. An authenticated, local attacker may perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service...
CVE-2020-9091
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have an out-of-bounds read and write vulnerability. Some functions do not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device...
CVE-2020-9112
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have a privilege elevation vulnerability. Due to lack of privilege restrictions on some of the business functions of the device. An attacker could exploit this vulnerability to access the protecting information, resulting in the elevation o...
Huawei Taurus-AN00B Buffer Overflow Vulnerability
Huawei Mate 305G Taurus-AN00B is the official firmware for Huawei Mate 305G. A security vulnerability exists in Huawei Taurus-AN00B versions prior to 10.1.0.156, which stems from some functions failing to adequately validate input. An attacker could exploit the vulnerability by sending a specific...
Huawei Taurus-AN00B Elevation of Privilege Vulnerability
Huawei Mate 305G Taurus-AN00B is the official firmware for Huawei Mate 305G. A security vulnerability exists in Huawei Taurus-AN00B versions prior to 10.1.0.156, which stems from a lack of privilege restrictions on certain business functions of the product. An attacker can exploit the vulnerabili...
HUAWEI Taurus-AN00B Information Disclosure Vulnerability
Huawei Mate 305G Taurus-AN00B is the official firmware for Huawei Mate 305G. A security vulnerability exists in HUAWEI Taurus-AN00B. The vulnerability stems from the device's failure to adequately examine the contents of the log output in a particular scenario, which allows an attacker to obtain...
Huawei Mate 30 (5G) Taurus-AN00B Buffer Overflow Vulnerability
Huawei Mate 305G Taurus-AN00B is the official firmware for Huawei Mate 305G. A buffer overflow vulnerability exists in versions prior to Huawei Taurus-AN00B 10.1.0.156 C00E155R7P2. The vulnerability stems from a function in the module that does not adequately validate input. An attacker could use...
CVE-2020-9112
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have a privilege elevation vulnerability. Due to lack of privilege restrictions on some of the business functions of the device. An attacker could exploit this vulnerability to access the protecting information, resulting in the elevation o...
Privilege escalation
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have a privilege elevation vulnerability. Due to lack of privilege restrictions on some of the business functions of the device. An attacker could exploit this vulnerability to access the protecting information, resulting in the elevation o...
CVE-2020-9112
CVE-2020-9112 affects Huawei Taurus-AN00B devices pre-10.1.0.156, due to insufficient privilege restrictions in several business functions, allowing local privilege elevation and access to protected information. Public docs from multiple sources (Huawei HWPSIRT advisory HWPSIRT-2020-04152 and cor...
CVE-2020-9112
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have a privilege elevation vulnerability. Due to lack of privilege restrictions on some of the business functions of the device. An attacker could exploit this vulnerability to access the protecting information, resulting in the elevation o...
CVE-2020-9110
Taurus-AN00B versions earlier than 10.1.0.156C00E155R7P2 have an information disclosure vulnerability. The device does not sufficiently validate the output of device in certain specific scenario, the attacker can gain information in the victim's smartphone to launch the attack, successful exploit...