Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this vulnerability may cause malicious apps to run continuously in the background.
Max CVSS
3.3
EPSS Score
0.04%
Published
2023-09-27
Updated
2023-09-28
Vulnerability of mutex management in the bone voice ID trusted application (TA) module. Successful exploitation of this vulnerability may cause the bone voice ID feature to be unavailable.
Max CVSS
3.7
EPSS Score
0.05%
Published
2023-09-27
Updated
2023-09-28
The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability may cause download failures and affect product availability.
Max CVSS
3.3
EPSS Score
0.04%
Published
2023-05-26
Updated
2023-06-02
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Max CVSS
3.4
EPSS Score
0.04%
Published
2022-10-14
Updated
2022-10-15
A component of the HarmonyOS has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability. Local attackers may exploit this vulnerability to cause kernel address leakage.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-10-28
Updated
2022-05-03
A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to cause out-of-bounds write.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-10-28
Updated
2021-11-01
A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to cause nearby process crash.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-10-28
Updated
2022-07-12
There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful exploit may cause the process and the service abnormal.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-06-22
Updated
2021-06-29
There is a Business Logic Errors vulnerability in Huawei Smartphone. The malicious apps installed on the device can keep taking screenshots in the background. This issue does not cause system errors, but may cause personal information leakage.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-06-03
Updated
2022-05-03
There is a buffer overflow vulnerability in Mate 30 10.1.0.126(C00E125R5P3). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause buffer overflow, compromising normal service.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-02-06
Updated
2021-02-10
There is a use after free vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). A module may refer to some memory after it has been freed while dealing with some messages. Attackers can exploit this vulnerability by sending specific message to the affected module. This may lead to module crash, compromising normal service.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-02-06
Updated
2021-02-10
A component API of the HarmonyOS 2.0 has a permission bypass vulnerability. Local attackers may exploit this vulnerability to issue commands repeatedly, exhausting system service resources.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-03-02
Updated
2021-03-09
There is a resource management errors vulnerability in Huawei P30. Local attackers construct broadcast message for some application, causing this application to send this broadcast message and impact the customer's use experience.
Max CVSS
3.3
EPSS Score
0.04%
Published
2021-01-13
Updated
2021-01-19
There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attacker with the ability to access the device and cause the username information leak. Affected product versions include: CloudEngine 12800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800; CloudEngine 5800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800; CloudEngine 6800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800
Max CVSS
3.3
EPSS Score
0.04%
Published
2020-07-17
Updated
2021-07-21
There is an improper integrity checking vulnerability on some huawei products. The software of the affected product has an improper integrity check which may allow an attacker with high privilege to make malicious modifications.Affected product versions include:HEGE-560 versions 1.0.1.21(SP3);HEGE-570 versions 1.0.1.22(SP3);OSCA-550 versions 1.0.1.21(SP3);OSCA-550A versions 1.0.1.21(SP3);OSCA-550AX versions 1.0.1.21(SP3);OSCA-550X versions 1.0.1.21(SP3).
Max CVSS
3.9
EPSS Score
0.04%
Published
2020-03-20
Updated
2023-02-03
There is a double free vulnerability in some Huawei products. A local attacker with low privilege may perform some operations to exploit the vulnerability. Due to doubly freeing memory, successful exploit may cause some service abnormal. Affected product versions include:CampusInsight versions V100R019C00;ManageOne versions 6.5.RC2.B050.
Max CVSS
3.3
EPSS Score
0.04%
Published
2020-03-20
Updated
2020-03-24
46 vulnerabilities found
1 2
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!