Security Advisory - DoS Vulnerability in Vibrator Service of Huawei Smart Phones

The vibrator service of some Huawei smart phones has DoS vulnerability due to the lack of a parameters check. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone vibrator service interface to crash the system...

Security Advisory - Information Leak Vulnerability in Huawei APP

Some Huawei APPs have an information leak vulnerability. When an iPhone with these APPs installed access the Wi-Fi hotpot built by attacker, the attacker can collect the information of iPhone mode and firmware version. Vulnerability ID: HWPSIRT-2017-02025 This vulnerability has been assigned a CV...

Security Advisory - Arbitrary Memory Read Write Vulnerability in Huawei Smart Phones

There is a arbitrary memory read/write vulnerability in the hardware security module of some Huawei smart phones due to the input parameters validation. An attacker with the root privilege of the Android system could exploit this vulnerability to read and write memory data anywhere or execute...

Security Advisory - Buffer Overflow Vulnerability in the Boot Loaders of Huawei Mobile Phones

The boot loaders of some Huawei mobile phones have a buffer overflow vulnerability due to the lack of parameter validation. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the...

Security Advisory - Privilege Elevation Vulnerability Caused by Arbitrary File Upload in Huawei Themes

The Huawei Themes APP in some Huawei products has a privilege elevation vulnerability due to the lack of theme pack check. An attacker could exploit this vulnerability to upload theme packs containing malicious files and trick users into installing the theme packets, resulting in the execution of...

Security Advisory - Privilege Escalation Vulnerability in Huawei Smart Phones

There is a privilege escalation vulnerability in Huawei smart phones. An unauthenticated attacker can bypass phone activation to user management page of the phone and create a new user. Successful exploit could allow the attacker operate part function of the phone. Vulnerability ID:...

Security Advisory - Buffer Overflow Vulnerability in Goldeneye Driver of Huawei Smart Phones

The goldeneye driver of some Huawei smart phones has buffer overflow vulnerability due to the lack of a parameters check. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone...

Security Advisory - Buffer Overflow Vulnerability in Emergdata Driver of Huawei Smart Phones

The emergdata driver of some Huawei smart phones has a buffer overflow vulnerability due to the lack of a parameters check. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart pho...

Security Advisory - MITM Vulnerability in Huawei Vmall APP

The upgrade package of Huawei Vmall APP is transferred through HTTP. A man in the middle MITM can tamper with the upgrade package of Huawei Vmall APP, and to implant the malicious applications. Vulnerability ID: HWPSIRT-2016-11068 This vulnerability has been assigned a Common Vulnerabilities and...

Security Advisory - Improper Permission Control Vulnerability in Huawei Vmall Alert Service

The AlarmService component in Huawei Vmall has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experience. Vulnerability ID: HWPSIRT-2016-11067...

Security Advisory - Authentication Bypass Vulnerability in the 'Find Phone' Function of some Huawei Smart Phones

The 'Find Phone' function of some Huawei smart phones has an authentication bypass vulnerability. An unauthenticated attacker may wipe and factory reset the phone by special steps. Due to missing authentication of the 'Find Phone' function, an attacker may exploit the vulnerability to bypass the...

Security Advisory - Authentication Bypass Vulnerability in the 'Find Phone' Function of some Huawei Smart Phones

The 'Find Phone' function of some Huawei smart phones has an authentication bypass vulnerability. An unauthenticated attacker may wipe and factory reset the phone by special steps. Due to missing authentication of the 'Find Phone' function, an attacker may exploit the vulnerability to bypass the...

Security Advisory - Two Security Vulnerabilities in Huawei EMUI

Huawei EMUI3.1 has two vulnerabilities. The Keyguard application in Huawei EMUI3.1 has a privilege elevation vulnerability due to insufficient validation on specific parameters. An attacker may trick a user into installing a malicious application. Successful exploit could allow the attacker to...

Security Advisory - Buffer Overflow Vulnerability in Driver of Huawei Smart Phone

The ddrdevfreq driver of some Huawei products has buffer overflow vulnerability due to the lack of a parameters check. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to...

Security Advisory - EFM Flapping Vulnerability in Huawei Products

Some Huawei VRP-based products have an Ethernet in the First Mile EFM flapping vulnerability due to the lack of type-length-value TLV consistency check. An attacker may craft malformed packets and send them to a device to cause EFM flapping. Vulnerability ID: HWPSIRT-2016-09025 This vulnerability...

Security Advisory - Lock-screen Bypass Vulnerability in Huawei Smartphones

There is a lock-screen bypass vulnerability in Huawei smartphones. An unauthenticated attacker could force the phone to the fastboot mode and delete the user's password file during the reboot process, then login the phone without screen lock password after reboot. Vulnerability ID:...

Security Advisory - Phone Activation Bypass Vulnerability in Huawei Smartphones

There is a phone activation bypass vulnerability in Huawei smartphones. Successful exploit could allow an unauthenticated attacker to bypass phone activation to settings page of the phone. Vulnerability ID: HWPSIRT-2016-12004 This vulnerability has been assigned CVE ID: CVE-2017-2705. Huawei has...

Security Advisory - Input Validation Vulnerability in Touchscreen Driver of Huawei Smart Phones

There is an input validation vulnerability in the touchscreen Driver of some Huawei smart phones. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system. Vulnerability ID: HWPSIRT-2016-12025 This...

Security Advisory - Phone Finder Bypass Vulnerability in Huawei Smart Phones

Phone Finder is a Huawei security method that was designed to make sure someone can't just wipe and factory reset the phone if user lost it or it was stolen. The Phone Finder in some Huawei smart phones can be bypass. An attacker can bypass the Phone Finder by special steps and enter the System...

Security Advisory - DoS Vulnerability in Multiple Huawei Products

There is an denial of service DoS vulnerability in multiple Huawei products. An attacker with specific permission can craft a file containing malicious data and upload it to the device to exhaust memory, causing a DoS condition. Vulnerability ID: HWPSIRT-2016-07088 This vulnerability has been...

Security Advisory - Camera DOS Vulnerability in ION Memory Management Module of Huawei Smart Phone

A denial of service DoS vulnerability exists in the ION memory management module of some Huawei mobile phones. An attacker may trick a user into installing a malicious app to send specific parameters to a Huawei mobile phone. Successful exploit could cause the system to restart. Vulnerability ID:...

Security Advisory - FRP Bypass Vulnerability in Huawei Smart Phones

Factory Reset Protection FRP is a security method that was designed to make sure someone can't just wipe and factory reset the phone if user lost it or it was stolen. The FRP in some Huawei smart phones can be bypass. An attacker can bypass the FRP by special steps and wipe and factory reset the...

Security Advisory - Chrome V8 engine has a remote code execution vulnerability

Chrome V8 is a Google Chrome engine for parsing JavaScript. Chrome V8 v3.20 to v4.2 has a remote code execution vulnerability due to misspelling of exception name observeacceptinvalid into observeinvalidaccept in source code, leading to the leak of kMessages. Successful exploit of this...

Security Advisory - Input Validation Vulnerability in Huawei VRP Platform

There is an input validation vulnerability in some Huawei devices using VRP. Due to the lack of input validation, an attacker may craft a malformed packet and send it to the device using VRP, causing the device to display additional memory data and possibly leading to sensitive information leakag...

Security Advisory - DoS Vulnerability in Multiple Huawei Devices

There is a denial of service DoS vulnerability in multiple Huawei devices. Due to the lack of input validation, a remote attacker may craft a malformed Resource Reservation ProtocolRSVP packet and send it to the device, causing a few buffer overflows and occasional device restart. Vulnerability I...

Security Advisory - Memory Leak Vulnerability in Some Huawei Routers

Some Huawei products have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices. When the values of some parameters in the packet are abnormal, the LDP processing module does not release the memory to handle the packet,...

Security Advisory - Multiple Vulnerabilities in MTK Platform

There are multiple vulnerabilities in MTK platform used in Huawei smart phones. There is a integer overflow vulnerability in MTK platform used in Huawei smart phones. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to escalate...

Security Advisory - Memory Leak Vulnerability in Some Huawei Products

Some Huawei products have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices. When the values of some parameters in the packet are abnormal, the LDP processing module does not release the memory to handle the packet,...

Security Advisory - Input Validation Vulnerability in Wi-Fi Driver of Huawei Smart Phones

There is an input validation vulnerability in the Wi-Fi Driver of some Huawei smart phones. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege. Vulnerability ID:...

Security Advisory - Stack Overflow Vulnerability in Drive of Huawei Smart Phones

There is a stack overflow vulnerabilities in touchscreen drive of some Huawei Smart phones. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to touchscreen drive to crash the system or escalate privilege Vulnerability ID:...

Security Advisory - E-mail Information Leak Vulnerability in Android System

The Security Bulletin describes an E-mail Information Leak Vulnerability in Android System discovered by Google CVE-2016-3918. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to obtain information in the...

Security Advisory - DoS Vulnerability in Huawei Firewall

There is a denial of service DoS vulnerability in Huawei firewalls due to no memory release after the execution of a specific command. A remote attacker with specific permission can log in to a device and deliver a large number of such commands to exhaust memory, causing a DoS condition...

Security Advisory - Buffer Overflow Vulnerability in Wi-FI Driver of Huawei Smart Phone

The Wi-Fi driver of some Huawei products has buffer overflow vulnerability due to the lack of a parameters check. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege...

Security Advisory - Buffer Overflow Vulnerability in Wi-FI Driver of Huawei Smart Phone

The Wi-Fi driver of some Huawei products has buffer overflow vulnerability due to the lack of a parameters check. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege...

Security Advisory - Memory Leak Vulnerability in Some Huawei Products

Some Huawei products have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol LDP packets to the devices repeatly. Due to improper validation of some specific fields of the packet, the LDP processing module does not release the memory, resulting ...

Security Advisory - Privilege Escalation Vulnerability in Some Huawei Storage Products

Some Huawei storage products have a privilege escalation vulnerability due to the lack of input validation. Attackers with administrator privilege could inject command into specific command’s parameters, and run this injected command with root privilege. Vulnerability ID: HWPSIRT-2016-05004 This...

Security Advisory - FRP Bypass Vulnerability in Huawei Smart Phones

There is Factory Reset Protection FRP bypass security vulnerability in some Huawei smart phones. When re-configuring the mobile phone using the factory reset protection FRP function, an attacker can enter some functional modules without authorization and perform operations to update the Google...

Security Advisory - Dirty COW Vulnerability in Huawei Products

In the morning of October 21th, 2016, a security researcher Phil Oester disclosed a local privilege escalation vulnerability in Linux kernel. A race condition was found in the way the Linux kernel's memory subsystem handled the copy-on-write COW breakage of private read-only memory mappings. An...

Security Advisory - XSS Vulnerability in Huawei eSpace IAD

Huawei eSpace Integrated Access Device IAD has a reflected cross-site scripting XSS vulnerability. An attacker could trick a user into clicking a URL containing malicious scripts. Then the user's browser may receive a response from the eSpace IAD and execute the malicious scripts. Successful...

Security Advisory - Command Injection Vulnerability in Huawei FusionAccess

There is a command injection vulnerability in Huawei FusionAccess due to the lack of input validation. A remote attacker with specific permission could inject an Lightweight Directory Access ProtocolLDAP operation command into a specific input variable to obtain sensitive information from the...

Security Advisory - DoS Vulnerability in Huawei Switches

There is a denial of service DoS vulnerability in Huawei switches due to improper management of system resources. A remote attacker with specific permission could store massive files to exhaust the shared storage space, leading to a DoS condition. Vulnerability ID: HWPSIRT-2016-06006 This...

Security Advisory - Buffer Overflow Vulnerability in Huawei Firewall Products

The security policy processing module of some Huawei firewall products have a buffer overflow vulnerability. An authenticated attacker may setup a specific security policy into the devices, causing buffer overflow and crash the system. Vulnerability ID: HWPSIRT-2016-06074 This vulnerability has...

Security Advisory - Integer Overflow Vulnerability in Some Huawei Devices

Some Huawei devices have an integer overflow vulnerability. Due to the lack of validation in some field of the packet, a remote, unauthenticated attacker may craft specific IPFPM packets, probably causing the device to reset. Vulnerability ID: HWPSIRT-2016-04030 This vulnerability has been assign...

Security Advisory - Buffer Overflow Vulnerability in TP Driver of Huawei Smart Phone

Touch Panel TP driver of some Huawei products have one buffer overflow vulnerability due to the lack of a parameters check. An attacker can get ROOT privilege and to send given parameter to TP driver to crash the system or execute arbitrary code. Vulnerability ID: HWPSIRT-2016-05224 This...

Security Advisory - Multiple Security Vulnerabilities in Huawei Smart Phone Products

The TrustZone driver of some Huawei smart phone products has an input validation vulnerability. An attacker may trick the target user into installing a malicious APP which could exploit this vulnerability to pass specific parameters to the TrustZone driver. Successful exploit could cause the syst...

Security Advisory - Privilege Escalation Vulnerability in the FusionStorage

FusionStorage is a piece of distributed block storage software specifically designed for the storage infrastructure of cloud computing data centers. The maintenance module of Huawei FusionStorage has a privilege escalation vulnerability. After logging in to the FusionStorage successfully as a...

Security Advisory - Buffer Overflow Vulnerability in HIFI Driver of Huawei Smart Phone

The HIFI driver of some Huawei products has buffer overflow vulnerability due to the lack of a parameters check. An attacker can get ROOT privilege and send given parameter to driver to crash the system or execute arbitrary code. Vulnerability ID: HWPSIRT-2016-05220 This vulnerability has been...

Security Advisory - Buffer Overflow Vulnerability in Some Huawei Products

There is a buffer overflow vulnerability in Connectivity Fault Management CFM function of some Huawei Products. When CFM is enabled and Maintenance Association End Point MEP is configured on the affected device, an adjacent attacker could exploit this vulnerability by sending crafted packets to t...

Security Advisory - Multiple Input Validation Vulnerabilities in Huawei Smart Phone

There are four input validation vulnerabilities in some Huawei Smart phones. An attacker gets the graphic or Camera privilege and tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege...

Security Advisory - Unquoted Service Path Vulnerability in Huawei UTPS Software

Huawei Unified Terminal PC suite UTPS, also known as Mobile Partner, runs on the PC side to manage data cards. It provides data card setting, dial-up setting, message sending and receiving, and contacts management functions. Huawei UTPS has an unquoted service path vulnerability which can lead to...