CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   

Huawei : Security Vulnerabilities

CVSS Scores Greater Than: 0   1   2   3   4   5   6   7   8   9  
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-48302 863 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality.
2 CVE-2022-48301 281 2023-02-09 2023-02-17
0.0
 None ??? ??? ??? ??? ??? ???
The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled.
3 CVE-2022-48300 306 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
4 CVE-2022-48299 306 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
5 CVE-2022-48298 20 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.
6 CVE-2022-48297 20 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The geofencing kernel code has a vulnerability of not verifying the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.
7 CVE-2022-48296 281 2023-02-09 2023-02-17
0.0
 None ??? ??? ??? ??? ??? ???
The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices.
8 CVE-2022-48295 281 2023-02-09 2023-02-17
0.0
 None ??? ??? ??? ??? ??? ???
The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this vulnerability can lead to filling problems (batch installation of applications).
9 CVE-2022-48294 287 2023-02-09 2023-02-17
0.0
 None ??? ??? ??? ??? ??? ???
The IHwAttestationService interface has a defect in authentication. Successful exploitation of this vulnerability may affect data confidentiality.
10 CVE-2022-48293 125 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The Bluetooth module has an OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
11 CVE-2022-48292 125 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The Bluetooth module has an out-of-memory (OOM) vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
12 CVE-2022-48290 Bypass 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The phone-PC collaboration module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data confidentiality and integrity.
13 CVE-2022-48289 306 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
14 CVE-2022-48288 306 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
15 CVE-2022-48287 Bypass 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data integrity.
16 CVE-2022-48286 863 2023-02-09 2023-02-16
0.0
 None ??? ??? ??? ??? ??? ???
The multi-screen collaboration module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
17 CVE-2022-48284 863 2023-02-27 2023-03-07
0.0
 None ??? ??? ??? ??? ??? ???
A piece of Huawei whole-home intelligence software has an Incorrect Privilege Assignment vulnerability. Successful exploitation of this vulnerability could allow attackers to access restricted functions.
18 CVE-2022-48283 863 2023-02-27 2023-03-07
0.0
 None ??? ??? ??? ??? ??? ???
A piece of Huawei whole-home intelligence software has an Incorrect Privilege Assignment vulnerability. Successful exploitation of this vulnerability could allow attackers to access restricted functions.
19 CVE-2022-47976 2023-01-06 2023-01-12
0.0
 None ??? ??? ??? ??? ??? ???
The DMSDP module of the distributed hardware has a vulnerability that may cause imposter control connections.Successful exploitation of this vulnerability may disconnect normal service connections.
20 CVE-2022-47975 415 2023-01-06 2023-02-09
0.0
 None ??? ??? ??? ??? ??? ???
The DUBAI module has a double free vulnerability. Successful exploitation of this vulnerability may affect system availability.
21 CVE-2022-47974 2023-01-06 2023-01-12
0.0
 None ??? ??? ??? ??? ??? ???
The Bluetooth AVRCP module has a vulnerability that can lead to DoS attacks.Successful exploitation of this vulnerability may cause the Bluetooth process to restart.
22 CVE-2022-46762 Bypass 2023-01-06 2023-01-12
0.0
 None ??? ??? ??? ??? ??? ???
The memory management module has a logic bypass vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.
23 CVE-2022-46761 2023-01-06 2023-01-12
0.0
 None ??? ??? ??? ??? ??? ???
The system has a vulnerability that may cause dynamic hiding and restoring of app icons.Successful exploitation of this vulnerability may cause malicious hiding of app icons.
24 CVE-2022-46328 20 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Some smartphones have the input validation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
25 CVE-2022-46327 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause privilege escalation, which results in system service exceptions.
26 CVE-2022-46326 787 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system service exceptions.
27 CVE-2022-46325 787 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service exceptions.
28 CVE-2022-46324 787 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system service exceptions.
29 CVE-2022-46323 787 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service exceptions.
30 CVE-2022-46322 787 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system service exceptions.
31 CVE-2022-46321 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The Wi-Fi module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect data confidentiality.
32 CVE-2022-46320 125 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The kernel module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may cause memory overwriting.
33 CVE-2022-46319 787 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
Fingerprint calibration has a vulnerability of lacking boundary judgment. Successful exploitation of this vulnerability may cause out-of-bounds write.
34 CVE-2022-46318 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The HAware module has a function logic error. Successful exploitation of this vulnerability will affect the account removal function in Settings.
35 CVE-2022-46317 125 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The power consumption module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect system availability.
36 CVE-2022-46316 287 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
A thread security vulnerability exists in the authentication process. Successful exploitation of this vulnerability may affect data integrity, confidentiality, and availability.
37 CVE-2022-46315 2022-12-20 2023-03-27
0.0
 None ??? ??? ??? ??? ??? ???
The ProfileSDK has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.
38 CVE-2022-46314 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The IPC module has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.
39 CVE-2022-46313 287 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The sensor privacy module has an authentication vulnerability. Successful exploitation of this vulnerability may cause unavailability of the smartphone's camera and microphone.
40 CVE-2022-46312 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The application management module has a vulnerability in permission verification. Successful exploitation of this vulnerability causes unexpected clear of device applications.
41 CVE-2022-46311 416 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The contacts component has a free (undefined) provider vulnerability. Successful exploitation of this vulnerability may affect data integrity.
42 CVE-2022-46310 2022-12-20 2022-12-24
0.0
 None ??? ??? ??? ??? ??? ???
The TelephonyProvider module has a vulnerability in obtaining values.Successful exploitation of this vulnerability may affect data confidentiality.
43 CVE-2022-44563 362 2022-11-09 2022-11-10
0.0
 None ??? ??? ??? ??? ??? ???
There is a race condition vulnerability in SD upgrade mode. Successful exploitation of this vulnerability may affect data confidentiality.
44 CVE-2022-44562 269 2022-11-09 2022-11-10
0.0
 None ??? ??? ??? ??? ??? ???
The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
45 CVE-2022-44561 276 2022-11-09 2022-11-17
0.0
 None ??? ??? ??? ??? ??? ???
The preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauthorized apps add arbitrary widgets and shortcuts without interaction.
46 CVE-2022-44560 2022-11-09 2022-11-17
0.0
 None ??? ??? ??? ??? ??? ???
The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.
47 CVE-2022-44559 502 2022-11-09 2022-11-14
0.0
 None ??? ??? ??? ??? ??? ???
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
48 CVE-2022-44558 502 2022-11-09 2022-11-14
0.0
 None ??? ??? ??? ??? ??? ???
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
49 CVE-2022-44557 2022-11-09 2022-11-14
0.0
 None ??? ??? ??? ??? ??? ???
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality.
50 CVE-2022-44556 20 2022-11-08 2023-03-03
0.0
 None ??? ??? ??? ??? ??? ???
Missing parameter type validation in the DRM module. Successful exploitation of this vulnerability may affect availability.
Total number of vulnerabilities : 774   Page : 1 (This Page)2 3 4 5 6 7 8 9 10 11 12 13 14 15 16
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.