Emui Security Vulnerabilities - CVSS Score 5 - 6
There is a heap-based buffer overflow vulnerability in some Huawei Smartphone, Successful exploit of this vulnerability can cause process exceptions during updating.
5.3CVSS
5.5AI Score
0.001EPSS
There is a missing authentication vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability may lead to low-sensitive information exposure.
5.3CVSS
5.2AI Score
0.001EPSS
A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to cause memory leakage and doS attacks by carefully constructing attack scenarios.
5.5CVSS
5.5AI Score
0.0004EPSS
An application bypass mechanism vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to delete user SMS messages.
5.5CVSS
5.4AI Score
0.0004EPSS
An application error verification vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to modify and delete user SMS messages.
5.5CVSS
5.4AI Score
0.0004EPSS
There is an Information Disclosure vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may result in video streams being intercepted during transmission.
5.3CVSS
5.1AI Score
0.001EPSS
There is an Information Disclosure vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause leaking of user click data.
5.3CVSS
5.1AI Score
0.001EPSS
There is an Improper Access Control vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause temporary DoS.
5.3CVSS
5.3AI Score
0.001EPSS
There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to the disclosure of user habits.
5.3CVSS
5.2AI Score
0.001EPSS
There is an Improper Access Control vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause temporary DoS.
5.3CVSS
5.3AI Score
0.001EPSS
There is a Directory traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
5.3CVSS
5.3AI Score
0.001EPSS
There is a Configuration defects in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
5.3CVSS
5.3AI Score
0.001EPSS
There is an Improper permission management vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
5.3CVSS
5.3AI Score
0.001EPSS
There is an Uninitialized variable vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause transmission of invalid data.
5.3CVSS
5.3AI Score
0.001EPSS
There is a Permission verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect the device performance.
5.3CVSS
5.2AI Score
0.001EPSS
There is a issue that nodes in the linked list being freed for multiple times in Huawei Smartphone due to race conditions. Successful exploitation of this vulnerability can cause the system to restart.
5.9CVSS
5.6AI Score
0.001EPSS
There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause transmission of certain virtual information.
5.3CVSS
5.3AI Score
0.001EPSS
There is a Low memory error in Huawei Smartphone due to the unlimited size of images to be parsed.Successful exploitation of this vulnerability may cause the Gallery or Files app to exit unexpectedly.
5.3CVSS
5.2AI Score
0.001EPSS
There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to read an array that is out of bounds.
5.3CVSS
5.1AI Score
0.001EPSS
There is an Identity verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.
5.3CVSS
5.3AI Score
0.001EPSS
There is a Bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause Digital Balance to fail to work.
5.3CVSS
5.2AI Score
0.001EPSS
There is a Logic bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to obtain certain device information.
5.3CVSS
5.2AI Score
0.001EPSS
There is an Improper permission control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to obtain certain device information.
5.3CVSS
5.1AI Score
0.001EPSS
There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers steal short messages.
5.3CVSS
5.2AI Score
0.001EPSS
There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality.
5.5CVSS
5.5AI Score
0.0004EPSS
There is an improper memory access permission configuration on ACPU.Successful exploitation of this vulnerability may cause out-of-bounds access.
5.5CVSS
5.5AI Score
0.0004EPSS
There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
5.3CVSS
5.2AI Score
0.001EPSS
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.
5.5CVSS
5.5AI Score
0.0004EPSS
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.
5.5CVSS
5.5AI Score
0.0004EPSS
There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.
5.5CVSS
5.5AI Score
0.0004EPSS
There is an Out-of-bounds write vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
5.3CVSS
5.3AI Score
0.001EPSS
There is a Vulnerability of accessing resources using an incompatible type (type confusion) in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart.
5.5CVSS
5.4AI Score
0.0004EPSS
There is a vulnerability of signature verification mechanism failure in system upgrade through recovery mode.Successful exploitation of this vulnerability may affect service confidentiality.
5.5CVSS
5.5AI Score
0.0004EPSS
There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity.
5.9CVSS
5.6AI Score
0.001EPSS
The Property module has a vulnerability in permission control.This vulnerability can be exploited to obtain the unique device identifier.
5.3CVSS
5.1AI Score
0.001EPSS
HwSEServiceAPP has a vulnerability in permission management. Successful exploitation of this vulnerability may cause disclosure of the Card Production Life Cycle (CPLC) information.
5.3CVSS
5.2AI Score
0.001EPSS
The kernel emcom module has multi-thread contention. Successful exploitation of this vulnerability may affect system availability.
5.5CVSS
5.4AI Score
0.0004EPSS
Missing authorization vulnerability in the system components. Successful exploitation of this vulnerability will affect confidentiality.
5.5CVSS
5.5AI Score
0.0004EPSS
The communication module has a vulnerability of improper permission preservation. Successful exploitation of this vulnerability may affect system availability.
5.5CVSS
5.5AI Score
0.0004EPSS
The fingerprint sensor module has design defects. Successful exploitation of this vulnerability may affect data confidentiality.
5.5CVSS
5.5AI Score
0.0004EPSS
AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this vulnerability may affect system availability.
5.5CVSS
5.5AI Score
0.0004EPSS
The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful exploitation of this vulnerability may affect system availability.
5.5CVSS
5.5AI Score
0.0004EPSS
The MPTCP module has the race condition vulnerability. Successful exploitation of this vulnerability may cause the device to restart.
5.9CVSS
5.6AI Score
0.001EPSS
Uncaptured exceptions in the home screen module. Successful exploitation of this vulnerability may affect stability.
5.3CVSS
5.3AI Score
0.001EPSS
The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider. Successful exploitation of this vulnerability may cause third-party apps to start periodically.
5.3CVSS
5.2AI Score
0.001EPSS
The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.
5.3CVSS
5.2AI Score
0.001EPSS
There is a race condition vulnerability in SD upgrade mode. Successful exploitation of this vulnerability may affect data confidentiality.
5.9CVSS
5.8AI Score
0.002EPSS
The HAware module has a function logic error. Successful exploitation of this vulnerability will affect the account removal function in Settings.
5.3CVSS
5.3AI Score
0.001EPSS
The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices.
5.3CVSS
5AI Score
0.001EPSS
The Always On Display (AOD) has a path traversal vulnerability in theme files. Successful exploitation of this vulnerability may cause a failure in reading AOD theme resources.
5.3CVSS
5.3AI Score
0.001EPSS