MidnightBSD

Advisories for huawei

CVE-2009-2272 MEDIUM

The Huawei D100 stores the administrator's account name and password in cleartext in a cookie, which allows context-dependent attackers to obtain sensitive information by (1) reading a cookie file, by (2) sniffing the network for HTTP headers, and possibly by using unspecified other vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-312,

Products Affected

Vendor Product Version
huawei d100_firmware -
CVE-2012-3268 LOW

Certain HP Access Controller, Fabric Module, Firewall, Router, Switch, and UTM Appliance products; certain HP 3Com Access Controller, Router, and Switch products; certain HP H3C Access Controller, Firewall, Router, Switch, and Switch and Route Processing Unit products; and certain Huawei Firewall/Gateway, Router, Switch, and Wireless products do not properly implement access control as defined in h3c-user.mib 2.0 and hh3c-user.mib 2.0, which allows remote authenticated users to discover credentials in UserInfoEntry values via an SNMP request with the read-only community.

CVSS 2.0

Severity: LOW

Problem Type: CWE-522,

Products Affected

Vendor Product Version
hp 0235a15g -
hp jd667a -
hp jd351a -
hp je022a -
hp 0235a296 -
hp 3cr17252taa-91 -
huawei cx600 v600r002
hp 3cs7903e -
hp 3cr17251taa-91 -
hp 0235a31c -
hp jg256a -
hp 0235a0a7 -
hp 0235a0e3 -
hp 3crbvcxmsr05a -
hp jf817a -
hp 0235a22d -
hp 0235a39h -
hp je046a -
hp 0235a238 -
hp jc165a -
hp jd326a -
hp 0235a320 -
hp jr024a -
hp jd345a -
hp jg258a -
hp 3cruwx500475 -
hp jd313a -
hp je167a -
hp 3cr17332-91 -
hp jf427a -
hp 0235a0c2 -
hp 0235a0ga -
hp 0235a10l -
hp jd660a -
hp 3cr17171-91 -
hp jf238a -
hp jg302a -
hp je028a -
hp 3cr17662-91 -
hp jd305a -
hp jf802a -
hp 0235a36n -
hp jd658a -
hp jg251a -
huawei ne5000e v800r002
hp jc124b -
hp jd378a -
hp 0235a20n -
hp 3cr17332a-91 -
hp 3cr17161taa-91 -
hp jf815a -
hp 3crs48g-24s-91 -
hp 0150a12a -
hp je108a -
huawei ne40e&80e v600r003
hp je092a -
hp je074a -
hp 3c17302a -
hp jd369a -
hp 0235a0g1 -
huawei me60 v600r002
hp 0150a12c -
hp 0235a0gd -
hp jd303a -
hp jd315a -
hp 0235a38q -
hp 0235a37t -
hp 3cr17161-91 -
huawei ne40e&80e v600r001
hp 0235a31v -
hp 3crs48g-24-91 -
hp jc100a -
hp jd921a -
hp jf428a -
hp jc700a -
hp 0235a31n -
hp jd669a -
hp 0235a0ge -
hp jg241a -
hp jf801a -
hp 0235a0g3 -
hp 3cs7903es -
hp je070a -
hp jd304a -
hp je062a -
hp je063a -
hp je109a -
hp je102a -
hp 0235a0g8 -
hp jf234a -
hp je009a -
hp jg213a -
hp je058a -
hp 0235a22p -
hp 0231a65t -
hp je103a -
hp je106a -
hp jd242a -
hp jd674a -
hp je101a -
hp jd275a -
hp jd670a -
hp 0235a32e -
hp jf814a -
hp 0235a0g9 -
hp jd663b -
hp jd333a -
hp jd335a -
hp 3cr17772taa-91 -
hp je165a -
hp 0235a19h -
hp jd447a -
hp 0235a41d -
hp jc055a -
hp jc103a -
hp 0235a27s -
hp 3crbsg28hpwr93 -
hp je006a -
huawei me60 v600r005c00spc600
hp 0235a27q -
hp 3c17304a -
hp 0235a0g5 -
hp jd025a -
hp jd431a -
hp 0235a15b -
hp 0235a299 -
hp jd659a -
hp jf287a -
hp 3cr17171taa-91 -
hp 0235a21x -
hp jd241b -
huawei -ma5200g v300r003
hp jd317a -
hp jc474b -
hp 0235a0e6 -
hp jd329a -
hp 0235a10c -
hp 3c13636 -
hp lsr1fw2a1 -
hp 0235a22e -
hp 0235a32g -
hp 3cr17181-91 -
hp jc150b -
hp jc177a -
hp 0235a08m -
hp 0235a31q -
hp je110a -
hp jd672a -
hp 3c13616 -
hp 0235a19c -
hp 0235a34b -
hp jf800a -
hp jd307a -
hp jd344a -
hp je033a -
hp 3cr17762-91 -
hp jd316a -
hp 0235a397 -
hp jd026a -
hp jd354a -
hp jf237a -
hp 0235a19l -
hp 0235a29l -
hp 3cr17562-91 -
hp jd273a -
hp 0235a33r -
huawei cx600 v600r001
hp je067a -
huawei me60 v600r003
hp 3cr17258taa-91 -
hp 0235a0g2 -
hp jc149b -
hp jd318b -
hp 0235a0ct -
hp je061a -
hp 3cr17162-91 -
hp 0235a29a -
hp 3cr17761taa-91 -
hp jd666a -
hp 3cr17254-91 -
huawei ne20 v200r005
hp je526a -
hp 3cs7906ev -
hp 3cr17661-91 -
hp 3cr17341a-91 -
hp jd661a -
hp 0235a10f -
hp jd242b -
hp jd312a -
hp 3c13612 -
huawei cx600 v200r002
hp jf283a -
hp 3cr17561-91 -
hp 3crbsg5293 -
hp 0231a86p -
hp jd241a -
hp jd918a -
hp jd334a -
hp jg184a -
hp jf240a -
hp 3crbvcxmsr06a -
hp jd348a -
hp juc653a -
hp jg311a -
hp 0235a31x -
hp jd010a -
hp 0235a390 -
hp 3crbvcxmsr08a -
hp jd654a -
hp 0235a42d -
hp 0235a31e -
hp je020a -
hp jf231a -
hp 0235a21p -
hp jd353a -
hp jd011a -
hp jd310a -
hp je093a -
hp jg478a -
hp 0235a248 -
hp 3cr17258-91 -
hp jg223a -
hp jf284a -
hp 0235a10g -
hp jd172a -
hp je013a -
hp jd193b -
hp jd664a -
hp 3crs48g-48p-91 -
hp 0235a37u -
hp 3crbvcxmsr03a -
hp jf803a -
hp je025a -
hp 0235a19k -
hp 3cr17341-91 -
hp 3c17540taa -
hp jf430a -
hp je094a -
hp jd268a -
huawei ne5000e v300r007
hp 0235a21q -
hp jc150a -
hp jd251a -
hp 3cr17259-91 -
hp 0235a20r -
hp jg248a -
hp 3cr17253taa-91 -
hp 3crs42g-48-91 -
hp je027a -
hp je551a -
hp jd433a -
hp 0235a20l -
hp jc147b -
hp jd923a -
hp jg237a -
hp jf228a -
hp 0235a325 -
hp jd332a -
hp jc566a -
hp jc666a -
hp 0235a25n -
hp 3c13640 -
hp jc104a -
hp jd967a -
hp jg350a -
hp 0235a08h -
hp je060a -
hp jc158a -
hp jd357a -
hp jd675a -
hp je064a -
huawei me60 v100r006
hp jc178b -
hp jc149a -
hp 0235a15j -
hp jg242a -
hp 0235a17a -
huawei ne40e&80e v600r002
hp 0235a25s -
hp jd352a -
hp jd302a -
hp jd311a -
hp 3c13641 -
hp 3c17543taa -
hp 0150a129 -
hp jc699a -
hp je032a -
hp 0235a0c4 -
hp 0235a0bs -
hp je057a -
hp 0235a322 -
hp jd239a -
hp jd240b -
hp 0235a22f -
hp jf807a -
hp jf846a -
hp 0235a38p -
hp 0235a0as -
hp 3cr17333a-91 -
hp 0235a392 -
hp jd946a -
hp 0235a19b -
hp jg092a -
hp 0235a38v -
hp 3cr17250-91 -
hp 0235a10d -
hp rtvz33020as -
hp 0235a0gf -
hp jd337a -
hp 0235a19d -
hp 3cr17341taa-91 -
huawei atn v200r001c01
hp jd338a -
hp jd320b -
hp jd676a -
hp jd374a -
hp lsq1srpd0 -
hp je071a -
hp jd370a -
hp je198a -
hp jf808a -
huawei me60 v100r005
hp jf809a -
hp je023a -
hp 0235a22h -
hp 0235a10b -
hp 3crs48g-24p-91 -
hp 0235a391 -
hp 3crbvcxmsr02a -
hp je069a -
hp 3crs45g-24-91 -
hp 3crs42g-24p-91 -
hp jd330a -
hp 0235a08k -
hp jf233a -
hp 0235a31p -
hp jd673a -
hp 0235a37x -
hp 0235a25r -
hp jf232a -
hp jd972a -
hp jd320a -
hp jd313b -
hp jd009a -
hp 0235a08f -
hp 0235a0e5 -
hp 0235a0g0 -
hp jf552a -
hp jd469a -
hp jg214a -
hp jg252a -
hp jf239a -
hp jf285a -
hp jg225a -
hp jd448a -
hp 3cr17571-91 -
hp 0235a22r -
hp je029a -
hp jg210a -
hp 0235a22k -
hp jd008a -
hp 3cr17181taa-91 -
hp jg209a -
hp je066a -
hp jc086a -
hp 0235a35j -
hp 3c17543 -
hp 3cr17250taa-91 -
hp je091a -
hp 0235a10k -
hp 0231a88a -
hp 0235a396 -
hp 0235a300 -
hp 0235a31b -
hp jf235a -
hp jd308a -
hp jg239a -
hp jd372a -
hp 0231a761 -
hp 0235a0bx -
hp jf812a -
hp jg300a -
hp 0235a14v -
hp jd328a -
hp je012a -
hp 0235a0gc -
hp je030a -
hp jg249a -
hp 0235a327 -
hp je072a -
hp 0235a38r -
hp 0235a23h -
hp jd029a -
hp jd350a -
hp 0235a15h -
hp jf431c -
hp 3c13751 -
hp 0235a268 -
hp jd023a -
hp jc085a -
hp 0235a16t -
hp je095a -
hp je528a -
hp jd331a -
hp jd024a -
hp jd194a -
hp jg255a -
hp jg348a -
hp 0235a393 -
hp jg303a -
hp rpe-x1 -
hp jd671a -
hp je045a -
hp je005a -
hp jr430b -
hp 0235a298 -
hp je199a -
hp jg222a -
hp 3cr17333-91 -
hp 3cr17772-91 -
hp 0235a27d -
hp jd349a -
hp 3cr17771-91 -
hp jd027a -
hp jd376a -
hp je059a -
hp jd220a -
hp jd379a -
hp jf241a -
hp 0235a20q -
hp 3c17541 -
huawei atb v200r001c00
hp jd377a -
hp jc101a -
hp 0235a398 -
hp jd238a -
huawei ne40&80 v300r005
hp 0235a36q -
hp jc697a -
hp 3cr17762taa-91 -
hp jc105a -
hp je021a -
hp jd272a -
hp 3crbsg2093 -
hp jg245a -
huawei ne20e-x6 v600r003
hp 3c17541taa -
hp jd668a -
hp jd249a -
hp jd325a -
hp 0235a0a8 -
hp 0235a0g6 -
hp jd193a -
hp jd450a -
hp je203a -
hp jd028a -
hp je018a -
hp 0235a0g4 -
hp jc054a -
hp je016a -
hp jd347a -
hp jd432a -
hp jg299a -
hp 3c13613 -
hp 0235a297 -
hp jg183a -
hp jd663a -
hp jf847a -
hp 3c17540 -
hp 0235a09t -
hp jd444a -
hp je088a -
hp 3cs7902e -
hp jc653a -
hp jc148a -
hp jg215a -
hp 0235a0br -
hp jd007a -
hp jd314a -
hp 0235a10j -
hp 3cr17671-91 -
hp 3c13759 -
hp jg304a -
hp je073a -
hp 0235a0bt -
hp 0235a17b -
hp jd657a -
hp jg240a -
hp jc612a -
hp jd449a -
hp 3crs48g-48-91 -
hp je545a -
huawei ne5000e v800r003
hp jc496a -
hp jd306a -
hp 0235a267 -
hp 0235a31d -
hp jd250a -
hp je204a -
hp 3cr17771taa-91 -
hp jd355a -
hp 0235a31r -
hp je168a -
hp 0231a832 -
hp jd373a -
hp 0235a23p -
hp 3cr17761-91 -
hp je008a -
hp jd468a -
hp je096a -
hp 0231a88l -
hp 0235a22c -
hp 0235a326 -
hp 3crs45g-48-91 -
hp je200a -
hp jg250a -
hp 0235a0bq -
hp 0235a0c0 -
hp 0235a20p -
hp jc177b -
hp jc694a -
hp jd665a -
hp 3crbvcxmsr01a -
hp jf553a -
hp jc125a -
hp jg305a -
hp jf242a -
hp jg221a -
hp 0231a0av -
hp jc125b -
hp jd240a -
hp 0235a20s -
hp jg312a -
hp jf806a -
hp 0235a19j -
hp je007a -
hp 0235a32b -
hp jf236a -
hp 3cr17660-91 -
hp je031a -
hp jd243b -
hp 0235a20v -
hp 0235a324 -
hp lsq1fwbsc0 -
hp jg257a -
hp jf804a -
hp 0235a0bu -
hp 0235a301 -
hp jr431b -
hp 0235a38m -
hp 0235a15d -
hp 0235a20k -
hp 0235a29y -
hp 0235a42b -
hp 3cr17251-91 -
hp jd274a -
hp 0235a27r -
hp 3cr17342-91 -
hp jd319b -
hp jf816a -
hp 0235aa2m -
hp 3cr17572-91 -
hp 0235a0g7 -
hp jf640a -
hp jd309a -
hp 0235a22t -
hp 3cr17152-91 -
hp 3cs7906e -
hp jd922a -
hp jf551a -
hp jg301a -
huawei ne40e&80e v300r003
hp jd318a -
hp jg307a -
hp 0235a38n -
hp 0235a323 -
hp 3cr17151-91 -
hp je048a -
hp je105a -
hp 3cr17331taa-91 -
hp jc147a -
hp 0235a20j -
hp 3crbvcxmsr07a -
hp jf230a -
hp 0150a12b -
hp jf286a -
hp jc611a -
hp jg246a -
hp jd238b -
hp jd943a -
hp jc176a -
hp jg207a -
hp jc056a -
hp 0235a0e7 -
hp je164a -
hp je099a -
hp 0235a26g -
hp jf247a -
hp je090a -
hp jg182a -
hp jd346a -
hp 3cr17162taa-91 -
hp jd375a -
hp jf229a -
huawei ma5200g v200r003
hp jd336a -
hp jc698a -
hp jd655a -
hp jg238a -
hp 0235a394 -
hp 0235a269 -
hp jc701a -
hp 3crs42g-24-91 -
hp 0235a15c -
hp je104a -
hp je201a -
hp jd239b -
hp jc652a -
hp je089a -
hp je100a -
huawei cx600 v600r003
hp je015a -
hp jd935a -
hp jg253a -
hp 3cr17172-91 -
hp jc691a -
hp jd319a -
hp jc178a -
hp 3c13840 -
hp jf430c -
hp 0235a10e -
hp 3cr17172taa-91 -
hp 3crbsg2893 -
hp 3cruwx500275 -
hp jg208a -
hp 3cr17334-91 -
hp 0235a328 -
hp 0235a395 -
hp je527a -
hp jc148b -
hp jg247a -
hp 0235a23t -
hp 3cr17331a-91 -
hp je068a -
hp 0235a321 -
hp jd327a -
hp 3cr17331-91 -
hp 0235a14w -
hp 3cr17343-91 -
hp jc613a -
hp jc635a -
hp jf431a -
hp 3cr17253-91 -
hp je026a -
hp jf845a -
hp je097a -
hp jf813a -
hp 0235a237 -
hp jd656a -
hp jf844a -
hp jc748a -
hp 0235a15f -
hp jd245a -
hp jd371a -
hp 3c13701 -
hp jg236a -
hp jd356a -
hp jg315a -
hp jd662a -
hp je166a -
hp jc099a -
hp jg091a -
hp jg349a -
hp 0235a32x -
hp jc474a -
hp jd448b -
hp jg059a -
hp jg254a -
hp jd916a -
hp 0235a10h -
hp jd447b -
hp 0235a31w -
hp 3crbsg28pwr93 -
hp jd917a -
hp je107a -
hp 3cr17343a-91 -
hp jd243a -
CVE-2012-5968 MEDIUM

The Huawei E585 device does not validate the status of admin sessions, which allows remote attackers to obtain sensitive user information and the session ID, and modify data, by leveraging access to the LAN network.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei e585u-82 -
huawei e585 -
CVE-2012-5969 MEDIUM

Multiple directory traversal vulnerabilities on the Huawei E585 device allow remote attackers to (1) read arbitrary files via a .. (dot dot) in the PATH_INFO of an sdcard/ request or (2) modify arbitrary files via a .. (dot dot) in the req_page parameter to en/sms.cgi.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei e585u-82 -
huawei e585 -
CVE-2012-5970 MEDIUM

The Huawei E585 device allows remote attackers to cause a denial of service (NULL pointer dereference and device outage) via crafted HTTP requests, as demonstrated by unspecified vulnerability-scanning software.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei e585u-82 -
huawei e585 -
CVE-2012-6568 MEDIUM

Buffer overflow in the back-end component in Huawei UTPS 1.0 allows local users to gain privileges via a long IDS_PLUGIN_NAME string in a plug-in configuration file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei utps 1.0
CVE-2012-6569 HIGH

Stack-based buffer overflow in the HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches allows remote attackers to execute arbitrary code via a long URI.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei s3300 r6305
huawei s3900 r6305
huawei ar_28/46 *
huawei s5600 r6305
huawei s2000 r6305
huawei ar_18-1x *
huawei s3300hi r6305
huawei s8500 r1632
huawei s5100 r6305
huawei s2700 r6305
huawei ar_18-2x *
huawei ar_18-3x *
huawei s8500 r1631
huawei s2300 r6305
huawei ar_19/29/49 *
huawei s3700 r6305
huawei s7800 r6305
huawei s3000 r6305
huawei s3500 r6305
CVE-2012-6570 HIGH

The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, S7800, and S8500 switches does not check whether HTTP data is longer than the value of the Content-Length field, which allows remote HTTP servers to conduct heap-based buffer overflow attacks and execute arbitrary code via a crafted response.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei s3300 r6305
huawei s3900 r6305
huawei ar_28/46 *
huawei s5600 r6305
huawei s2000 r6305
huawei ar_18-1x *
huawei s3300hi r6305
huawei s8500 r1632
huawei s5100 r6305
huawei s2700 r6305
huawei ar_18-2x *
huawei ar_18-3x *
huawei s8500 r1631
huawei s2300 r6305
huawei ar_19/29/49 *
huawei s3700 r6305
huawei s7800 r6305
huawei s3000 r6305
huawei s3500 r6305
CVE-2012-6571 HIGH

The HTTP module in the (1) Branch Intelligent Management System (BIMS) and (2) web management components on Huawei AR routers and S2000, S3000, S3500, S3900, S5100, S5600, and S7800 switches uses predictable Session ID values, which makes it easier for remote attackers to hijack sessions via a brute-force attack.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-310,

Products Affected

Vendor Product Version
huawei s3300 r6305
huawei s3900 r6305
huawei ar_28/46 *
huawei s5600 r6305
huawei s2000 r6305
huawei ar_18-1x *
huawei s3300hi r6305
huawei s8500 r1632
huawei s5100 r6305
huawei s2700 r6305
huawei ar_18-2x *
huawei ar_18-3x *
huawei s8500 r1631
huawei s2300 r6305
huawei ar_19/29/49 *
huawei s3700 r6305
huawei s7800 r6305
huawei s3000 r6305
huawei s3500 r6305
CVE-2013-2612 HIGH

Command-injection vulnerability in Huawei E587 3G Mobile Hotspot 11.203.27 allows remote attackers to execute arbitrary shell commands with root privileges due to an error in the Web UI.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
huawei e587_firmware 11.203.27
CVE-2013-4628 LOW

The firewall module on the Huawei Quidway Service Process Unit (SPU) board S7700, S9300, and S9700 on Huawei Campus Switch devices allows remote authenticated users to obtain sensitive information from the high-priority security zone by leveraging access to the low-priority security zone.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei quidway_service_process_unit_board_s7700 v200r001c00spc300
huawei quidway_service_process_unit_board_s9300 v200r001c00spc300
huawei quidway_service_process_unit_board_s9700 v200r001c00spc300
CVE-2013-4629 HIGH

The Huawei viewpoint VP9610 and VP9620 units for the Huawei Video Conference system do not update the Session ID upon successful establishment of a login session, which allows remote authenticated users to hijack sessions via an unspecified interception method.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-255,

Products Affected

Vendor Product Version
huawei vp_9610 *
huawei vp_9620 *
CVE-2013-4630 HIGH

Stack-based buffer overflow on Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3 debugging is enabled, allows remote attackers to execute arbitrary code via malformed SNMPv3 requests.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei ar_1200 v200r001
huawei ar_2200 v200r003
huawei ar_200 v200r001
huawei ar_200 v200r002
huawei ar_150 v200r003
huawei ar_150 v200r002
huawei ar_150 v200r001
huawei ar_200 v200r003
huawei ar_2200 v200r002
huawei ar_3200 v200r003
huawei ar_2200 v200r001
huawei ar_1200 v200r002
huawei ar_3200 v200r001
huawei ar_3200 v200r002
huawei ar_1200 v200r003
CVE-2013-4631 HIGH

Huawei AR 150, 200, 1200, 2200, and 3200 routers, when SNMPv3 is enabled, allow remote attackers to cause a denial of service (device crash) via malformed SNMPv3 requests that leverage unspecified overflow issues.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei ar_1200 v200r001
huawei ar_2200 v200r003
huawei ar_200 v200r001
huawei ar_200 v200r002
huawei ar_150 v200r003
huawei ar_150 v200r002
huawei ar_150 v200r001
huawei ar_200 v200r003
huawei ar_2200 v200r002
huawei ar_3200 v200r003
huawei ar_2200 v200r001
huawei ar_1200 v200r002
huawei ar_3200 v200r001
huawei ar_3200 v200r002
huawei ar_1200 v200r003
CVE-2013-4632 HIGH

The Huawei Access Router (AR) before V200R002SPC003 allows remote attackers to cause a denial of service (device reset) via a crafted field in a DHCP request, as demonstrated by a request from an IP phone.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei access_router *
CVE-2013-4633 HIGH

Huawei Seco Versatile Security Manager (VSM) before V200R002C00SPC300 allows remote authenticated users to gain privileges via a certain change to a group configuration setting.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei seco_versatile_security_manager v200r002c00spc100
huawei seco_versatile_security_manager v200r002c00spc200
huawei seco_versatile_security_manager v200r002c00
CVE-2013-6031 MEDIUM

The Huawei E355 adapter with firmware 21.157.37.01.910 does not require authentication for API pages, which allows remote attackers to change passwords and settings, or obtain sensitive information, via a direct request to (1) api/wlan/security-settings, (2) api/device/information, (3) api/wlan/basic-settings, (4) api/wlan/mac-filter, (5) api/monitoring/status, or (6) api/dhcp/settings.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei e355_firmware 21.157.37.01.910
huawei e355 -
CVE-2013-6786 MEDIUM

Cross-site scripting (XSS) vulnerability in Allegro RomPager before 4.51, as used on the ZyXEL P660HW-D1, Huawei MT882, Sitecom WL-174, TP-LINK TD-8816, and D-Link DSL-2640R and DSL-2641R, when the "forbidden author header" protection mechanism is bypassed, allows remote attackers to inject arbitrary web script or HTML by requesting a nonexistent URI in conjunction with a crafted HTTP Referer header that is not properly handled in a 404 page. NOTE: there is no CVE for a "URL redirection" issue that some sources list separately.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
sitecom wl-174 -
zyxel p-660hw_d1 -
allegrosoft rompager *
dlink dsl-2640r -
dlink dsl-2641r -
tp-link td-8816 -
huawei mt882 -
CVE-2014-0337 MEDIUM

Cross-site scripting (XSS) vulnerability in the web interface on Huawei Echo Life HG8247 routers with software before V100R006C00SPC127 allows remote attackers to inject arbitrary web script or HTML via an invalid TELNET connection attempt with a crafted username that is not properly handled during construction of the "failed log-in attempts over telnet" log view.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei echo_life hg8247
huawei echo_life_hg8247_firmware v1r006c00s120
CVE-2014-2271 MEDIUM

cn.wps.moffice.common.beans.print.CloudPrintWebView in Kingsoft Office 5.3.1, as used in Huawei P2 devices before V100R001C00B043, falls back to HTTP when the HTTPS connection to the registry fails, which allows man-in-the-middle attackers to conduct downgrade attacks and execute arbitrary Java code by leveraging a network position between the client and the registry to block HTTPS traffic.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
wps wps_office 5.3.1
huawei p2-6011_firmware *
CVE-2014-2273 HIGH

The hx170dec device driver in Huawei P2-6011 before V100R001C00B043 allows local users to read and write to arbitrary memory locations via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei p2-6011_firmware *
CVE-2014-2946 MEDIUM

Cross-site request forgery (CSRF) vulnerability in api/sms/send-sms in the Web UI 11.010.06.01.858 on Huawei E303 modems with software 22.157.18.00.858 allows remote attackers to hijack the authentication of administrators for requests that perform API operations and send SMS messages via a request element in an XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei webui 11.010.06.01.858
huawei e303_modem_firmware 22.157.18.00.858
huawei e303_modem ch2e303sm
CVE-2014-2968 MEDIUM

Cross-site scripting (XSS) vulnerability in the web interface on the Huawei E355 CH1E355SM modem with software 21.157.37.01.910 and Web UI 11.001.08.00.03 allows remote attackers to inject arbitrary web script or HTML via an SMS message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei e355_firmware 21.157.37.01.910
huawei e355 ch1e355sm
huawei e355_web_ui 11.001.08.00.03
CVE-2014-3221 MEDIUM

Huawei Eudemon8000E firewall with software V200R001C01SPC800 and earlier versions allows users to log in to the device using Telnet or SSH. When an attacker sends to the device a mass of TCP packets with special structure, the logging process becomes slow and users may be unable to log in to the device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei eudemon8000e_firmware *
CVE-2014-3222 MEDIUM

In Huawei eSpace Meeting with software V100R001C03SPC201 and the earlier versions, attackers that obtain the permissions assigned to common users can elevate privileges to access and set specific key resources.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei espace_meeting *
CVE-2014-3223 HIGH

Huawei S9300 with software before V100R006SPH013 and S2300,S3300,S5300,S6300 with software before V100R006SPH010 support Y.1731 and therefore have the Y.1731 vulnerability in processing special packets. The vulnerability causes the restart of switches.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-19,

Products Affected

Vendor Product Version
huawei s6300_firmware v100r006c01spc100
huawei s6300_firmware v100r006c00spc800
huawei s5300_firmware v100r006c00spc800
huawei s5300_firmware v100r006c03
huawei s9300_firmware v100r006c00spc800
huawei s5300_firmware v100r006c01spc100
huawei s2300_firmware v100r006c00spc800
huawei s3300_firmware v100r006c03
huawei s9300_firmware v100r006c00spc500
huawei s2300_firmware v100r006c03
huawei s6300_firmware v100r006c03
huawei s2300_firmware v100r006c01spc100
huawei s3300_firmware v100r006c00spc800
huawei s3300_firmware v100r006c01spc100
CVE-2014-3224 HIGH

Huawei Quidway S9700 V200R003C00SPC500, Quidway S9300 V200R003C00SPC500, Quidway S7700 V200R003C00SPC500, Quidway S6700 V200R003C00SPC300, Quidway S6300 V200R003C00SPC300, Quidway S5700 V200R003C00SPC300, Quidway S5300 V200R003C00SPC300 enable attackers to launch DoS attacks by crafting and sending malformed packets to these vulnerable products.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei quidway_s6700_firmware v200r003c00spc300
huawei quidway_s5300_firmware v200r003c00spc300
huawei quidway_s7700_firmware v200r003c00spc500
huawei quidway_s9300_firmware v200r003c00spc500
huawei quidway_s5700_firmware v200r003c00spc300
huawei quidway_s9700_firmware v200r003c00spc500
huawei quidway_s6300_firmware v200r003c00spc300
CVE-2014-4190 HIGH

Multiple heap-based buffer overflows in Huawei Campus Series Switches S3700HI, S5700, S6700, S3300HI, S5300, S6300, S9300, S7700, and LSW S9700 with software V200R001 before V200R001SPH013; S5700, S6700, S5300, and S6300 with software V200R002 before V200R002SPH005; S7700, S9300, S9300E, S5300, S5700, S6300, S6700, S2350, S2750, and LSW S9700 with software V200R003 before V200R003SPH005; and S7700, S9300, S9300E, and LSW S9700 with software V200R005 before V200R005C00SPC300 allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei campus_series_switch_software v200r005
huawei campus_s2750 -
huawei campus_s6300 -
huawei campus_series_switch_software v200r002
huawei campus_s6700 -
huawei campus_s9300 -
huawei campus_s3700hi -
huawei campus_s2350 -
huawei campus_s7700 -
huawei campus_s5300 -
huawei campus_lsw_s9700 -
huawei campus_s3300hi -
huawei campus_series_switch_software v200r001
huawei campus_s5700 -
huawei campus_s9300e -
huawei campus_series_switch_software v200r003
CVE-2014-4705 HIGH

Multiple heap-based buffer overflows in the eSap software platform in Huawei Campus S9300, S7700, S9700, S5300, S5700, S6300, and S6700 series switches; AR150, AR160, AR200, AR1200, AR2200, AR3200, AR530, NetEngine16EX, SRG1300, SRG2300, and SRG3300 series routers; and WLAN AC6005, AC6605, and ACU2 access controllers allow remote attackers to cause a denial of service (device restart) via a crafted length field in a packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei ar200_firmware v200r003c01spc100
huawei ar150_firmware v200r003c00spc200
huawei netengine16ex_firmware v200r003c01spc300
huawei ar2200_firmware v200r003c01spc300
huawei ar160_firmware v200r003c01spc300
huawei ar2200_firmware v200r003c01spc100
huawei s6700_firmware v200r001c00spc300
huawei srg3300_firmware v200r005c00spc200
huawei s6700_firmware v200r003c00spc300
huawei ar1200_firmware v200r005c00spc100
huawei s7700_firmware v200r001c00spc300
huawei wlan_ac6605_firmware v200r005c00spc100
huawei ar200_firmware v200r003c00spc100
huawei wlan_ac6605_firmware v200r003c00spc100
huawei ar2200_firmware v200r003c01spc900
huawei wlan_ac6005_firmware v200r003c00spc200
huawei wlan_ac6605_firmware v200r003c00spc200
huawei srg3300_firmware v200r003c01spc100
huawei srg2300_firmware v200r003c00spc200
huawei s6300_firmware v200r001c00spc300
huawei s6700_firmware v200r002c00spc100
huawei ar150_firmware v200r003c01spc900
huawei ar1200_firmware v200r003c00spc200
huawei ar160_firmware v200r003c01spc900
huawei ar160_firmware v200r005c00spc200
huawei srg1300_firmware v200r003c01spc900
huawei ar1200_firmware v200r003c01spc900
huawei ar3200_firmware v200r005c00spc200
huawei ar530_firmware v200r005c00spc100
huawei ar200_firmware v200r005c00spc100
huawei srg1300_firmware v200r003c01spc100
huawei s5700_firmware v200r002c00spc100
huawei ar2200_firmware v200r005c00spc100
huawei ar150_firmware v200r003c01spc300
huawei srg2300_firmware v200r003c01spc100
huawei srg3300_firmware v200r003c01spc900
huawei ar3200_firmware v200r003c01spc100
huawei wlan_ac6605_firmware v200r003c00spc300
huawei wlan_ac6005_firmware v200r003c00spc300
huawei ar530_firmware v200r003c01spc100
huawei srg1300_firmware v200r005c00spc100
huawei s5300_firmware v200r002c00spc100
huawei srg3300_firmware v200r005c00spc100
huawei s9700_firmware v200r002c00spc100
huawei ar530_firmware v200r003c00spc200
huawei ar530_firmware v200r003c00spc100
huawei s9700_firmware v200r001c00spc300
huawei ar200_firmware v200r003c01spc900
huawei srg1300_firmware v200r003c00spc200
huawei netengine16ex_firmware v200r003c01spc900
huawei srg3300_firmware v200r003c00spc100
huawei ar150_firmware v200r003c00spc100
huawei srg2300_firmware v200r005c00spc100
huawei srg2300_firmware v200r003c01spc900
huawei ar160_firmware v200r003c00spc100
huawei netengine16ex_firmware v200r003c00spc100
huawei srg2300_firmware v200r003c00spc100
huawei srg1300_firmware v200r003c00spc100
huawei netengine16ex_firmware v200r005c00spc200
huawei ar530_firmware v200r003c01spc900
huawei ar160_firmware v200r003c01spc100
huawei s5300_firmware v200r003c00spc300
huawei srg1300_firmware v200r003c01spc300
huawei wlan_acu2_firmware v200r005c00spc100
huawei ar150_firmware v200r005c00spc200
huawei ar200_firmware v200r003c00spc200
huawei ar2200_firmware v200r005c00spc200
huawei srg2300_firmware v200r005c00spc200
huawei s5700_firmware v200r001c00spc300
huawei s7700_firmware v200r002c00spc100
huawei s9700_firmware v200r003c00spc500
huawei ar1200_firmware v200r003c01spc100
huawei ar2200_firmware v200r003c00spc100
huawei wlan_ac6605_firmware v200r003c00spc500
huawei srg3300_firmware v200r003c00spc200
huawei srg1300_firmware v200r005c00spc200
huawei s6300_firmware v200r003c00spc300
huawei netengine16ex_firmware v200r005c00spc100
huawei s5700_firmware v200r003c00spc300
huawei ar3200_firmware v200r003c00spc200
huawei ar3200_firmware v200r005c00spc100
huawei netengine16ex_firmware v200r003c01spc100
huawei ar1200_firmware v200r003c00spc100
huawei ar200_firmware v200r005c00spc200
huawei ar160_firmware v200r003c00spc200
huawei netengine16ex_firmware v200r003c00spc200
huawei srg2300_firmware v200r003c01spc300
huawei ar530_firmware v200r005c00spc200
huawei s5300_firmware v200r001c00spc300
huawei ar1200_firmware v200r003c01spc300
huawei wlan_ac6005_firmware v200r005c00spc100
huawei ar2200_firmware v200r003c00spc200
huawei s7700_firmware v200r003c00spc500
huawei ar200_firmware v200r003c01spc300
huawei s9300_firmware v200r002c00spc100
huawei wlan_ac6005_firmware v200r003c00spc500
huawei ar3200_firmware v200r003c01spc300
huawei s6300_firmware v200r002c00spc100
huawei ar150_firmware v200r003c01spc100
huawei srg3300_firmware v200r003c01spc300
huawei ar160_firmware v200r005c00spc100
huawei s9300_firmware v200r001c00spc300
huawei ar530_firmware v200r003c01spc300
huawei wlan_ac6005_firmware v200r003c00spc100
huawei ar3200_firmware v200r003c01spc900
huawei ar1200_firmware v200r005c00spc200
huawei s9300_firmware v200r003c00spc500
huawei ar150_firmware v200r005c00spc100
huawei ar3200_firmware v200r003c00spc100
CVE-2014-4706 HIGH

Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei s5300_firmware v200r003c00spc300
huawei lsw_s9700_firmware v200r003c00spc300
huawei lsw_s9700_firmware v200r003c00spc500
huawei s5300_firmware v200r002c00spc100
huawei campus_s7700_firmware v200r003c00spc500
huawei s5300_firmware v200r001c00spc300
huawei s2750_firmware v200r003c00spc300
huawei s6700_firmware v200r001c00spc300
huawei s5700_firmware v200r001c00spc300
huawei s9300e_firmware v200r003c00spc300
huawei s6700_firmware v200r003c00spc300
huawei s7700_firmware v200r001c00spc300
huawei s9300_firmware v200r003c00spc300
huawei campus_s3700hi_firmware v200r001c00spc300
huawei s6300_firmware v200r001c00spc300
huawei s6700_firmware v200r002c00spc100
huawei s2350_firmware v200r003c00spc300
huawei s3300hi_firmware v200r001c00spc300
huawei campus_s7700_firmware v200r003c00spc300
huawei lsw_s9700_firmware v200r001c00spc300
huawei s9300e_firmware v200r003c00spc500
huawei s6300_firmware v200r002c00spc100
huawei s6300_firmware v200r003c00spc300
huawei s5700_firmware v200r003c00spc300
huawei campus_s5700_firmware v200r002c00spc100
huawei s9300_firmware v200r001c00spc300
huawei s9300_firmware v200r003c00spc500
CVE-2014-4707 HIGH

Huawei Campus S7700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9300 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300; S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300 allow unauthorized users to upgrade the bootrom or bootload software, bypass a Menu protection mechanism, conduct a Menu compromise attack, or bypass a Menu/upgrade protection mechanism.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei campus_s9300_firmware v200r001c00spc300
huawei campus_s9300_firmware v200r003c00spc300
huawei campus_s9300_firmware v200r002c00spc100
huawei campus_s9700_firmware v200r002c00spc100
huawei campus_s9700_firmware v200r001c00spc300
huawei campus_s7700_firmware v200r003c00spc300
huawei campus_s7700_firmware v200r002c00spc100
huawei campus_s7700_firmware v200r001c00spc300
huawei campus_s9700_firmware v200r003c00spc300
CVE-2014-5327 MEDIUM

Buffer overflow in the Webserver component on the Huawei E5332 router before 21.344.27.00.1080 allows remote authenticated users to cause a denial of service (reboot) via a long URI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei e5332_firmware *
huawei e5332 -
CVE-2014-5328 MEDIUM

Buffer overflow in the Webserver component on the Huawei E5332 router before 21.344.27.00.1080 allows remote authenticated users to cause a denial of service (reboot) via a long parameter in an API service request message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei e5332 -
huawei e5332_firmware 21.344.19.00.1080
CVE-2014-5394 MEDIUM

Multiple Huawei Campus switches allow remote attackers to enumerate usernames via vectors involving use of SSH by the maintenance terminal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei s5300_firmware v200r003c00spc300
huawei s2700_firmware v100r006c05
huawei s3700_firmware v100r006c05
huawei s5300_firmware v200r002c00spc300
huawei s9300e_firmware v200r001c00spc300
huawei s9700_firmware v200r002c00spc300
huawei s5300_firmware v200r001c00spc300
huawei s6700_firmware v200r001c00spc300
huawei s5700_firmware v200r001c00spc300
huawei s6700_firmware v200r003c00spc300
huawei s9300_firmware v200r002c00spc300
huawei s7700_firmware v200r001c00spc300
huawei s9700_firmware v200r001c00spc300
huawei s5700_firmware v200r002c00spc300
huawei s9700_firmware v200r003c00spc500
huawei s7700_firmware v200r003c00spc500
huawei s2300_firmware v100r006c05
huawei s3300_firmware v100r006c05
huawei s6300_firmware v200r001c00spc300
huawei s9300e_firmware v200r003c00spc500
huawei s6300_firmware v200r002c00spc300
huawei s6300_firmware v200r003c00spc300
huawei s6700_firmware v200r002c00spc300
huawei s7700_firmware v200r002c00spc300
huawei s5700_firmware v200r003c00spc300
huawei s9300_firmware v200r001c00spc300
huawei s9300e_firmware v200r002c00spc300
huawei s9300_firmware v200r003c00spc500
CVE-2014-5395 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei HiLink E3276 and E3236 TCPU before V200R002B470D13SP00C00 and WebUI before V100R007B100D03SP01C03, E5180s-22 before 21.270.21.00.00, and E586Bs-2 before 21.322.10.00.889 allow remote attackers to hijack the authentication of users for requests that (1) modify configurations, (2) send SMS messages, or have other unspecified impact via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei e3236_firmware *
huawei e5180s-22_firmware *
huawei e586bs-2_firmware *
huawei e3276_firmware *
CVE-2014-8331 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei HiLink E3236 before E3276sTCPU-V200R002B470D13SP00C00 and E3276sWebUI-V100R007B100D03SP01C03 and E3276 before E3236sTCPU-V200R002B146D41SP00C00 and E3236sWebUI-V100R007B100D03SP01C03 allow remote attackers to hijack the authentication of administrators for requests that (1) change configuration settings or (2) use device functions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei e3276_firmware e3276s-150tcpu-22.265.03.00.00
huawei e3236_firmware e3236s-2tcpu-22.146.29.00.00
huawei e3276_firmware webui-13.100.09.00.03
huawei e3236_firmware webui-13.100.10.00.03
CVE-2014-8358 HIGH

Huawei EC156, EC176, and EC177 USB Modem products with software before UTPS-V200R003B015D02SP07C1014 (23.015.02.07.1014) and before V200R003B015D02SP08C1014 (23.015.02.08.1014) use a weak ACL for the "Mobile Partner" directory, which allows remote attackers to gain SYSTEM privileges by compromising a low privilege account and modifying Mobile Partner.exe.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-426,

Products Affected

Vendor Product Version
huawei ec176_firmware v200r003b009d05sp03c1014
huawei ec177_firmware v200r003b009d05sp03c1014
huawei ec156_firmware v200r003b009d05sp03c1014
CVE-2014-8359 HIGH

Untrusted search path vulnerability in Huawei Mobile Partner for Windows 23.009.05.03.1014 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse wintab32.dll in the Mobile Partner directory.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei ec177 -
huawei ec156 -
huawei mobile_partner_firmware 23.009.05.03.1014
huawei ec176 -
CVE-2014-8570 MEDIUM

Huawei S9300, S9303, S9306, S9312 with software V100R002; S7700, S7703, S7706, S7712 with software V100R003, V100R006, V200R001, V200R002, V200R003, V200R005; S9300E, S9303E, S9306E, S9312E with software V200R001; S9700, S9703, S9706, S9712 with software V200R002, V200R003, V200R005; S12708, S12712 with software V200R005; 5700HI, 5300HI with software V100R006, V200R001, V200R002, V200R003, V200R005; 5710EI, 5310EI with software V200R002, V200R003, V200R005; 5710HI, 5310HI with software V200R003, V200R005; 6700EI, 6300EI with software V200R005 could cause a leak of IP addresses of devices, related to unintended interface support for VRP MPLS LSP Ping.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei s9303e_firmware v200r005
huawei s9312_firmware v100r002
huawei s9303_firmware v100r003
huawei s9706_firmware v200r002
huawei s9303e_firmware v200r003
huawei 5310hi_firmware v200r003
huawei s9700_firmware v200r005
huawei s7700_firmware v100r006
huawei s7712_firmware v100r003
huawei s7700_firmware v100r002
huawei s9300_firmware v200r001
huawei s9312_firmware v100r006
huawei s9303_firmware v200r002
huawei s7712_firmware v200r002
huawei s9703_firmware v200r001
huawei 5710ei_firmware v200r003
huawei s9300e_firmware v200r002
huawei s9703_firmware v200r003
huawei 5300hi_firmware v200r003
huawei s9300_firmware v200r002
huawei 5700hi_firmware v200r002
huawei s9706_firmware v200r001
huawei s7712_firmware v200r001
huawei 5310ei_firmware v200r003
huawei s9300_firmware v100r002
huawei s9300_firmware v100r006
huawei s9312e_firmware v200r005
huawei s9700_firmware v200r002
huawei s12708_firmware v200r005
huawei s9306e_firmware v200r002
huawei s9300e_firmware v200r003
huawei 5300hi_firmware v200r005
huawei s9306_firmware v100r002
huawei 5310hi_firmware v200r005
huawei 5700hi_firmware v100r006
huawei 5700hi_firmware v200r003
huawei s9303_firmware v100r002
huawei s7712_firmware v100r006
huawei s9303_firmware v200r001
huawei s9312e_firmware v200r002
huawei s7700_firmware v100r003
huawei s7703_firmware v100r006
huawei s7700_firmware v200r005
huawei s7703_firmware v100r003
huawei s9306_firmware v200r002
huawei 5710ei_firmware v200r002
huawei s9300_firmware v200r005
huawei s9306_firmware v100r006
huawei s7703_firmware v200r001
huawei s9306e_firmware v200r003
huawei s9712_firmware v200r001
huawei s9312e_firmware v200r003
huawei s9312_firmware v100r003
huawei s9300e_firmware v200r001
huawei s9703_firmware v200r005
huawei s9312_firmware v200r003
huawei 5710ei_firmware v200r005
huawei 6700ei_firmware v200r005
huawei s9306_firmware v200r001
huawei 5300hi_firmware v200r001
huawei s7703_firmware v200r003
huawei s9303_firmware v100r006
huawei s7706_firmware v100r006
huawei s9312_firmware v200r001
huawei s9700_firmware v200r001
huawei s7703_firmware v100r002
huawei s9306_firmware v200r005
huawei 5310ei_firmware v200r002
huawei s7706_firmware v200r002
huawei s9312_firmware v200r005
huawei s7706_firmware v200r001
huawei s7712_firmware v200r005
huawei s9312_firmware v200r002
huawei s9306_firmware v200r003
huawei 5710hi_firmware v200r003
huawei s9306e_firmware v200r001
huawei 5300hi_firmware v200r002
huawei s9303e_firmware v200r002
huawei s9300_firmware v200r003
huawei 5310ei_firmware v200r005
huawei s9700_firmware v200r003
huawei s9712_firmware v200r003
huawei 5300hi_firmware v100r006
huawei s7706_firmware v200r005
huawei s9303_firmware v200r003
huawei s7712_firmware v100r002
huawei s9303_firmware v200r005
huawei s7706_firmware v100r003
huawei s9712_firmware v200r005
huawei s7703_firmware v200r005
huawei s9706_firmware v200r003
huawei s9300e_firmware v200r005
huawei s9312e_firmware v200r001
huawei s7703_firmware v200r002
huawei s9712_firmware v200r002
huawei 6300ei_firmware v200r005
huawei s9703_firmware v200r002
huawei 5700hi_firmware v200r005
huawei s9300_firmware v100r003
huawei s7700_firmware v200r001
huawei s9306e_firmware v200r005
huawei s7706_firmware v100r002
huawei s7700_firmware v200r002
huawei s9303e_firmware v200r001
huawei s7706_firmware v200r003
huawei 5700hi_firmware v200r001
huawei s9306_firmware v100r003
huawei s7700_firmware v200r003
huawei s9706_firmware v200r005
huawei s7712_firmware v200r003
huawei 5710hi_firmware v200r005
huawei s12712_firmware v200r005
CVE-2014-8571 MEDIUM

Apps on Huawei Ascend P6 mobile phones with software EDGE-U00 V100R001C17B508SP01 and earlier versions before V100R001C17B508SP02; EDGE-T00 V100R001C01B508SP01 and earlier versions before V100R001C01B508SP02; EDGE-C00 V100R001C92B508SP02 and earlier versions before V100R001C92B508SP03 can capture screens without the root permission. As a result, user information can be leaked by malware on Ascend P6 mobile phones.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei ascend_p6_edge-c00_firmware *
huawei ascend_p6_edge-t00_firmware *
huawei ascend_p6_edge-u00_firmware *
CVE-2014-8572 HIGH

Huawei AC6605 with software V200R001C00; AC6605 with software V200R002C00; ACU with software V200R001C00; ACU with software V200R002C00; S2300, S3300, S2700, S3700 with software V100R006C05 and earlier versions; S5300, S5700, S6300, S6700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions; S7700, S9300, S9300E, S9700 with software V100R006, V200R001, V200R002, V200R003, V200R005C00SPC300 and earlier versions could allow remote attackers to send a special SSH packet to the VRP device to cause a denial of service.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9300e_firmware *
huawei ac6605_firmware ac6605_v200r001c00
huawei s6300_firmware *
huawei ac6605_firmware ac6605_v200r002c00
huawei s6700_firmware v200r002
huawei s7700_firmware v100r006
huawei s7700_firmware *
huawei s9300_firmware v200r001
huawei s9700_firmware *
huawei s6700_firmware v100r006
huawei s9300_firmware *
huawei s6300_firmware v100r006
huawei s5700_firmware *
huawei s5300_firmware v100r006
huawei s7700_firmware v200r001
huawei s5700_firmware v100r006
huawei s9700_firmware v100r006
huawei s9300e_firmware v200r001
huawei s9300e_firmware v200r002
huawei s6700_firmware v200r003
huawei s5700_firmware v200r001
huawei s6700_firmware *
huawei s9300_firmware v200r002
huawei s5300_firmware v200r003
huawei s9300e_firmware v100r006
huawei s9300_firmware v200r003
huawei s7700_firmware v200r002
huawei s5700_firmware v200r002
huawei s9700_firmware v200r003
huawei s5300_firmware v200r001
huawei s6700_firmware v200r001
huawei s7700_firmware v200r003
huawei s6300_firmware v200r001
huawei s9300_firmware v100r006
huawei acu_firmware acu_v200r001c00
huawei s5300_firmware v200r002
huawei s6300_firmware v200r002
huawei s9700_firmware v200r002
huawei s9700_firmware v200r001
huawei s_series_firmware v100r006c05
huawei s5700_firmware v200r003
huawei s6300_firmware v200r003
huawei acu_firmware acu_v200r002c00
huawei s9300e_firmware v200r003
huawei s5300_firmware *
CVE-2014-9134 HIGH

Unrestricted file upload vulnerability in Huawei Honor Cube Wireless Router WS860s before V100R001C02B222 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei honor_cube_wireless_router_ws860s -
huawei honor_cube_wireless_router_ws860s_firewall *
CVE-2014-9135 MEDIUM

The PackageInstaller module in Huawei P7-L10 smartphones before V100R001C00B136 allows remote attackers to spoof the origin website and bypass the website whitelist protection mechanism via a crafted package.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei p7-l10_firmware *
CVE-2014-9136 MEDIUM

Huawei FusionManager with software V100R002C03 and V100R003C00 could allow an unauthenticated, remote attacker to conduct a CSRF attack against the user of the web interface.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei usg9500_firmware *
huawei usg5100_firmware *
huawei fusionmanager *
huawei usg2100_firmware *
huawei usg2200_firmware *
huawei usg5500_firmware *
CVE-2014-9137 MEDIUM

Huawei USG9500 with software V200R001C01SPC800 and earlier versions, V300R001C00; USG2100 with software V300R001C00SPC900 and earlier versions; USG2200 with software V300R001C00SPC900; USG5100 with software V300R001C00SPC900 could allow an unauthenticated, remote attacker to conduct a CSRF attack against the user of the web interface.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei usg9500_firmware *
huawei usg5100_firmware *
huawei usg2100_firmware *
huawei usg2200_firmware *
huawei fusionmanager v100r002c03
huawei fusionmanager v100r003c00
huawei usg5500_firmware *
huawei usg9500_firmware v300r001c00
CVE-2014-9415 LOW

Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES file.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei espace_desktop *
CVE-2014-9416 MEDIUM

Multiple untrusted search path vulnerabilities in Huawei eSpace Desktop before V200R003C00 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) mfc71enu.dll, (2) mfc71loc.dll, (3) tcapi.dll, or (4) airpcap.dll.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei espace_desktop *
CVE-2014-9417 LOW

The Meeting component in Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted image.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei espace_desktop *
CVE-2014-9418 LOW

The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service (memory overflow) via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei espace_desktop *
CVE-2014-9690 MEDIUM

Huawei home gateways WS318 with software V100R001C01B022 and earlier versions are affected by the PIN offline brute force cracking vulnerability of the WPS protocol because the random number generator (RNG) used in the supplier's solution is not random enough. As a result, brute force cracking the PIN code is easier. After an attacker cracks the PIN, the attacker can access the Internet via the cracked device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-332,

Products Affected

Vendor Product Version
huawei ws318_firmware *
CVE-2014-9691 MEDIUM

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier versions, Tecal RH5885 V3 V100R003C01SPC102 and earlier versions, Tecal RH5885H V3 V100R003C00SPC102 and earlier versions, Tecal XH310 V2 V100R001C00SPC110 and earlier versions, Tecal XH311 V2 V100R001C00SPC110 and earlier versions, Tecal XH320 V2 V100R001C00SPC110 and earlier versions, Tecal XH621 V2 V100R001C00SPC106 and earlier versions, Tecal DH310 V2 V100R001C00SPC110 and earlier versions, Tecal DH320 V2 V100R001C00SPC106 and earlier versions, Tecal DH620 V2 V100R001C00SPC106 and earlier versions, Tecal DH621 V2 V100R001C00SPC107 and earlier versions, Tecal DH628 V2 V100R001C00SPC107 and earlier versions, Tecal BH620 V2 V100R002C00SPC107 and earlier versions, Tecal BH621 V2 V100R002C00SPC106 and earlier versions, Tecal BH622 V2 V100R002C00SPC110 and earlier versions, Tecal BH640 V2 V100R002C00SPC108 and earlier versions, Tecal CH121 V100R001C00SPC180 and earlier versions, Tecal CH140 V100R001C00SPC110 and earlier versions, Tecal CH220 V100R001C00SPC180 and earlier versions, Tecal CH221 V100R001C00SPC180 and earlier versions, Tecal CH222 V100R002C00SPC180 and earlier versions, Tecal CH240 V100R001C00SPC180 and earlier versions, Tecal CH242 V100R001C00SPC180 and earlier versions, Tecal CH242 V3 V100R001C00SPC110 and earlier versions could allow users who log in to the products to view the sessions IDs of all online users on the Online Users page of the web UI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei tecal_bh622_v2_firmware *
huawei tecal_ch222_firmware *
huawei tecal_dh620_v2_firmware *
huawei tecal_rh1288_v2_firmware *
huawei tecal_rh2265_v2_firmware v100r002c00
huawei tecal_rh2288_v2_firmware *
huawei tecal_ch220_firmware *
huawei tecal_rh2285_v2_firmware *
huawei tecal_ch140_firmware *
huawei tecal_ch121_firmware *
huawei tecal_ch242_v3_firmware *
huawei tecal_rh2485_v2_firmware *
huawei tecal_ch240_firmware *
huawei tecal_bh621_v2_firmware *
huawei tecal_xh621_v2_firmware *
huawei tecal_dh310_v2_firmware *
huawei tecal_xh310_v2_firmware *
huawei tecal_dh320_v2_firmware *
huawei tecal_rh5885_v2_firmware *
huawei tecal_rh5885h_v3_firmware *
huawei tecal_rh2285h_v2_firmware *
huawei tecal_bh640_v2_firmware *
huawei tecal_rh2268_v2_firmware v100r002c00
huawei tecal_rh2288h_v2_firmware *
huawei tecal_xh311_v2_firmware *
huawei tecal_dh628_v2_firmware *
huawei tecal_bh620_v2_firmware *
huawei tecal_rh5885_v3_firmware *
huawei tecal_ch242_firmware *
huawei tecal_ch221_firmware *
huawei tecal_xh320_v2_firmware *
huawei tecal_dh621_v2_firmware *
CVE-2014-9692 MEDIUM

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier versions, Tecal RH5885 V3 V100R003C01SPC102 and earlier versions, Tecal RH5885H V3 V100R003C00SPC102 and earlier versions, Tecal XH310 V2 V100R001C00SPC110 and earlier versions, Tecal XH311 V2 V100R001C00SPC110 and earlier versions, Tecal XH320 V2 V100R001C00SPC110 and earlier versions, Tecal XH621 V2 V100R001C00SPC106 and earlier versions, Tecal DH310 V2 V100R001C00SPC110 and earlier versions, Tecal DH320 V2 V100R001C00SPC106 and earlier versions, Tecal DH620 V2 V100R001C00SPC106 and earlier versions, Tecal DH621 V2 V100R001C00SPC107 and earlier versions, Tecal DH628 V2 V100R001C00SPC107 and earlier versions, Tecal BH620 V2 V100R002C00SPC107 and earlier versions, Tecal BH621 V2 V100R002C00SPC106 and earlier versions, Tecal BH622 V2 V100R002C00SPC110 and earlier versions, Tecal BH640 V2 V100R002C00SPC108 and earlier versions, Tecal CH121 V100R001C00SPC180 and earlier versions, Tecal CH140 V100R001C00SPC110 and earlier versions, Tecal CH220 V100R001C00SPC180 and earlier versions, Tecal CH221 V100R001C00SPC180 and earlier versions, Tecal CH222 V100R002C00SPC180 and earlier versions, Tecal CH240 V100R001C00SPC180 and earlier versions, Tecal CH242 V100R001C00SPC180 and earlier versions, Tecal CH242 V3 V100R001C00SPC110 and earlier versions could allow attackers to figure out the RMCP+ session IDs of users and access the system with forged identities.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei tecal_bh622_v2_firmware *
huawei tecal_ch222_firmware *
huawei tecal_dh620_v2_firmware *
huawei tecal_rh1288_v2_firmware *
huawei tecal_rh2265_v2_firmware v100r002c00
huawei tecal_rh2288_v2_firmware *
huawei tecal_ch220_firmware *
huawei tecal_rh2285_v2_firmware *
huawei tecal_ch140_firmware *
huawei tecal_ch121_firmware *
huawei tecal_ch242_v3_firmware *
huawei tecal_rh2485_v2_firmware *
huawei tecal_ch240_firmware *
huawei tecal_bh621_v2_firmware *
huawei tecal_xh621_v2_firmware *
huawei tecal_dh310_v2_firmware *
huawei tecal_xh310_v2_firmware *
huawei tecal_dh320_v2_firmware *
huawei tecal_rh5885_v2_firmware *
huawei tecal_rh5885h_v3_firmware *
huawei tecal_rh2285h_v2_firmware *
huawei tecal_bh640_v2_firmware *
huawei tecal_rh2268_v2_firmware v100r002c00
huawei tecal_rh2288h_v2_firmware *
huawei tecal_xh311_v2_firmware *
huawei tecal_dh628_v2_firmware *
huawei tecal_bh620_v2_firmware *
huawei tecal_rh5885_v3_firmware *
huawei tecal_ch242_firmware *
huawei tecal_ch221_firmware *
huawei tecal_xh320_v2_firmware *
huawei tecal_dh621_v2_firmware *
CVE-2014-9693 HIGH

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier versions, Tecal RH5885 V3 V100R003C01SPC102 and earlier versions, Tecal RH5885H V3 V100R003C00SPC102 and earlier versions, Tecal XH310 V2 V100R001C00SPC110 and earlier versions, Tecal XH311 V2 V100R001C00SPC110 and earlier versions, Tecal XH320 V2 V100R001C00SPC110 and earlier versions, Tecal XH621 V2 V100R001C00SPC106 and earlier versions, Tecal DH310 V2 V100R001C00SPC110 and earlier versions, Tecal DH320 V2 V100R001C00SPC106 and earlier versions, Tecal DH620 V2 V100R001C00SPC106 and earlier versions, Tecal DH621 V2 V100R001C00SPC107 and earlier versions, Tecal DH628 V2 V100R001C00SPC107 and earlier versions, Tecal BH620 V2 V100R002C00SPC107 and earlier versions, Tecal BH621 V2 V100R002C00SPC106 and earlier versions, Tecal BH622 V2 V100R002C00SPC110 and earlier versions, Tecal BH640 V2 V100R002C00SPC108 and earlier versions, Tecal CH121 V100R001C00SPC180 and earlier versions, Tecal CH140 V100R001C00SPC110 and earlier versions, Tecal CH220 V100R001C00SPC180 and earlier versions, Tecal CH221 V100R001C00SPC180 and earlier versions, Tecal CH222 V100R002C00SPC180 and earlier versions, Tecal CH240 V100R001C00SPC180 and earlier versions, Tecal CH242 V100R001C00SPC180 and earlier versions, Tecal CH242 V3 V100R001C00SPC110 and earlier versions could allow attackers to execute arbitrary code or restart the system via crafted DNS packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-19,

Products Affected

Vendor Product Version
huawei tecal_bh622_v2_firmware *
huawei tecal_ch222_firmware *
huawei tecal_dh620_v2_firmware *
huawei tecal_rh1288_v2_firmware *
huawei tecal_rh2265_v2_firmware v100r002c00
huawei tecal_rh2288_v2_firmware *
huawei tecal_ch220_firmware *
huawei tecal_rh2285_v2_firmware *
huawei tecal_ch140_firmware *
huawei tecal_ch121_firmware *
huawei tecal_ch242_v3_firmware *
huawei tecal_rh2485_v2_firmware *
huawei tecal_ch240_firmware *
huawei tecal_bh621_v2_firmware *
huawei tecal_xh621_v2_firmware *
huawei tecal_dh310_v2_firmware *
huawei tecal_xh310_v2_firmware *
huawei tecal_dh320_v2_firmware *
huawei tecal_rh5885_v2_firmware *
huawei tecal_rh5885h_v3_firmware *
huawei tecal_rh2285h_v2_firmware *
huawei tecal_bh640_v2_firmware *
huawei tecal_rh2268_v2_firmware v100r002c00
huawei tecal_rh2288h_v2_firmware *
huawei tecal_xh311_v2_firmware *
huawei tecal_dh628_v2_firmware *
huawei tecal_bh620_v2_firmware *
huawei tecal_rh5885_v3_firmware *
huawei tecal_ch242_firmware *
huawei tecal_ch221_firmware *
huawei tecal_xh320_v2_firmware *
huawei tecal_dh621_v2_firmware *
CVE-2014-9694 MEDIUM

Huawei Tecal RH1288 V2 V100R002C00SPC107 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285 V2 V100R002C00SPC115 and earlier versions, Tecal RH2265 V2 V100R002C00, Tecal RH2285H V2 V100R002C00SPC111 and earlier versions, Tecal RH2268 V2 V100R002C00, Tecal RH2288 V2 V100R002C00SPC117 and earlier versions, Tecal RH2288H V2 V100R002C00SPC115 and earlier versions, Tecal RH2485 V2 V100R002C00SPC502 and earlier versions, Tecal RH5885 V2 V100R001C02SPC109 and earlier versions, Tecal RH5885 V3 V100R003C01SPC102 and earlier versions, Tecal RH5885H V3 V100R003C00SPC102 and earlier versions, Tecal XH310 V2 V100R001C00SPC110 and earlier versions, Tecal XH311 V2 V100R001C00SPC110 and earlier versions, Tecal XH320 V2 V100R001C00SPC110 and earlier versions, Tecal XH621 V2 V100R001C00SPC106 and earlier versions, Tecal DH310 V2 V100R001C00SPC110 and earlier versions, Tecal DH320 V2 V100R001C00SPC106 and earlier versions, Tecal DH620 V2 V100R001C00SPC106 and earlier versions, Tecal DH621 V2 V100R001C00SPC107 and earlier versions, Tecal DH628 V2 V100R001C00SPC107 and earlier versions, Tecal BH620 V2 V100R002C00SPC107 and earlier versions, Tecal BH621 V2 V100R002C00SPC106 and earlier versions, Tecal BH622 V2 V100R002C00SPC110 and earlier versions, Tecal BH640 V2 V100R002C00SPC108 and earlier versions, Tecal CH121 V100R001C00SPC180 and earlier versions, Tecal CH140 V100R001C00SPC110 and earlier versions, Tecal CH220 V100R001C00SPC180 and earlier versions, Tecal CH221 V100R001C00SPC180 and earlier versions, Tecal CH222 V100R002C00SPC180 and earlier versions, Tecal CH240 V100R001C00SPC180 and earlier versions, Tecal CH242 V100R001C00SPC180 and earlier versions, Tecal CH242 V3 V100R001C00SPC110 and earlier versions have a CSRF vulnerability. The products do not use the Token mechanism for web access control. When users log in to the Huawei servers and access websites containing the malicious CSRF script, the CSRF script is executed, which may cause configuration tampering and system restart.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei tecal_bh622_v2_firmware *
huawei tecal_ch222_firmware *
huawei tecal_dh620_v2_firmware *
huawei tecal_rh1288_v2_firmware *
huawei tecal_rh2265_v2_firmware v100r002c00
huawei tecal_rh2288_v2_firmware *
huawei tecal_ch220_firmware *
huawei tecal_rh2285_v2_firmware *
huawei tecal_ch140_firmware *
huawei tecal_ch121_firmware *
huawei tecal_ch242_v3_firmware *
huawei tecal_rh2485_v2_firmware *
huawei tecal_ch240_firmware *
huawei tecal_bh621_v2_firmware *
huawei tecal_xh621_v2_firmware *
huawei tecal_dh310_v2_firmware *
huawei tecal_xh310_v2_firmware *
huawei tecal_dh320_v2_firmware *
huawei tecal_rh5885_v2_firmware *
huawei tecal_rh5885h_v3_firmware *
huawei tecal_rh2285h_v2_firmware *
huawei tecal_bh640_v2_firmware *
huawei tecal_rh2268_v2_firmware v100r002c00
huawei tecal_rh2288h_v2_firmware *
huawei tecal_xh311_v2_firmware *
huawei tecal_dh628_v2_firmware *
huawei tecal_bh620_v2_firmware *
huawei tecal_rh5885_v3_firmware *
huawei tecal_ch242_firmware *
huawei tecal_ch221_firmware *
huawei tecal_xh320_v2_firmware *
huawei tecal_dh621_v2_firmware *
CVE-2014-9695 MEDIUM

The Hyper Module Management (HMM) software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions could allow a non-super-domain user who accesses HMM through SNMPv3 to perform operations on a server as a super-domain user.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei tecal_e9000_chassis_firmware *
CVE-2014-9696 MEDIUM

The Hyper Module Management (HMM) software of Huawei Tecal E9000 Chassis V100R001C00SPC160 and earlier versions allows the operator to modify the user configuration of iMana through privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei tecal_e9000_chassis_firmware *
CVE-2014-9697 HIGH

Huawei USG9560/9520/9580 before V300R001C01SPC300 allows remote attackers to cause a memory leak or denial of service (memory exhaustion, reboot and MPU switchover) via a crafted website.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei usg9560_firmware v300r001c01spc100
huawei usg9520_firmware v300r001c01spc100
huawei usg9580_firmware v300r001c00
huawei usg9560_firmware v300r001c00
huawei usg9580_firmware v300r001c01spc100
huawei usg9520_firmware v300r001c00
CVE-2015-1460 HIGH

Huawei Quidway switches with firmware before V200R005C00SPC300 allows remote attackers to gain privileges via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei quidway_firmware *
CVE-2015-2245 MEDIUM

Huawei Ascend P7 allows remote attackers to cause a denial of service (phone process crash).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p7-l09_firmware v100r001c92b610
huawei p7-l09_firmware v100r001c92b608
huawei p7-l09_firmware v100r001c92b609
huawei p7-l09_firmware v100r001c92b604
huawei p7-l09_firmware v100r001c92b606
huawei p7-l09_firmware v100r001c92b607
CVE-2015-2246 MEDIUM

The MeWidget module on Huawei P7 smartphones with software P7-L10 V100R001C00B136 and earlier versions could lead to the disclosure of contact information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei p7-l10_firmware *
CVE-2015-2251 MEDIUM

The DeviceManager in Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to obtain sensitive information via a crafted UDS patch with JavaScript.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei oceanstor_uds_firmware *
CVE-2015-2252 HIGH

Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to execute arbitrary code with root privileges via a crafted UDS patch with shell scripts.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei oceanstor_uds_firmware *
CVE-2015-2253 LOW

The XML interface in Huawei OceanStor UDS devices with software before V100R002C01SPC102 allows remote authenticated users to obtain sensitive information via a crafted XML document.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei oceanstor_uds_firmware *
CVE-2015-2254 MEDIUM

Huawei OceanStor UDS devices with software before V100R002C01SPC102 might allow remote attackers to capture and change patch loading information resulting in the deletion of directory files and compromise of system functions when loading a patch.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei oceanstor_uds_firmware *
CVE-2015-2255 MEDIUM

Huawei AR1220 routers with software before V200R005SPH006 allow remote attackers to cause a denial of service (board reset) via vectors involving a large amount of traffic from the GE port to the FE port.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-19,

Products Affected

Vendor Product Version
huawei ar1220_firmware v200r005c00spc200
huawei ar1220_firmware v200r005c20spc200
huawei ar1220_firmware v200r005c10spc500
huawei ar1220_firmware v200r005c20spc100
CVE-2015-2346 MEDIUM

XML external entity (XXE) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote authenticated users to read arbitrary files via the req parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei seq_analyst *
CVE-2015-2347 MEDIUM

Cross-site scripting (XSS) vulnerability in Huawei SEQ Analyst before V200R002C03LG0001CP0022 allows remote attackers to inject arbitrary web script or HTML via the command XML element in the req parameter to flexdata.action in (1) common/, (2) monitor/, or (3) psnpm/ or the (4) module XML element in the req parameter to flexdata.action in monitor/.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei seq_analyst *
CVE-2015-2800 HIGH

The user authentication module in Huawei Campus switches S5700, S5300, S6300, and S6700 with software before V200R001SPH012 and S7700, S9300, and S9700 with software before V200R001SPH015 allows remote attackers to cause a denial of service (device restart) via vectors involving authentication, which trigger an array access violation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei s7700_firmware *
huawei s6700_firmware *
huawei s9700_firmware *
huawei s6300_firmware *
huawei s9300_firmware *
huawei s5700_firmware *
huawei s5300_firmware *
CVE-2015-2808 MEDIUM

The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
redhat satellite 5.7
redhat enterprise_linux_eus 7.4
redhat enterprise_linux_server_aus 7.3
redhat satellite 5.6
redhat enterprise_linux_desktop 6.0
suse linux_enterprise_server 11
huawei smc2.0 v100r002c03
redhat enterprise_linux_eus 6.6
debian debian_linux 7.0
huawei smc2.0 v100r002c01
huawei s5700ei_firmware -
huawei te60_firmware -
huawei s6700_firmware -
oracle communications_application_session_controller *
redhat enterprise_linux_server_aus 7.7
huawei oceanstor_hvs85t_firmware -
huawei smc2.0 v100r002c04
huawei s5710ei_firmware -
redhat enterprise_linux_server 6.0
huawei oceanstor_18500_firmware -
huawei oceanstor_cse_firmware -
redhat enterprise_linux_server 7.0
redhat enterprise_linux_workstation 7.0
suse linux_enterprise_software_development_kit 12
redhat enterprise_linux_eus 7.6
oracle http_server 12.2.1.1.0
huawei oceanstor_s5800t_firmware -
huawei s5700hi_firmware -
fujitsu sparc_enterprise_m8000_firmware *
huawei s5700s-li_firmware -
redhat enterprise_linux_eus 7.3
redhat enterprise_linux_server 5.0
fujitsu sparc_enterprise_m9000_firmware *
redhat enterprise_linux_server_aus 7.6
oracle http_server 11.1.1.7.0
huawei oceanstor_replicationdirector v100r003c00
huawei oceanstor_s6800t_firmware -
fujitsu sparc_enterprise_m3000_firmware *
huawei e9000_firmware -
huawei policy_center v100r003c10
redhat enterprise_linux_server_aus 6.6
redhat enterprise_linux_eus 7.2
ibm cognos_metrics_manager 10.2
suse linux_enterprise_software_development_kit 11
suse manager 1.7
huawei s12700_firmware -
huawei s5720hi_firmware -
ibm cognos_metrics_manager 10.2.2
suse linux_enterprise_desktop 12
oracle integrated_lights_out_manager_firmware *
huawei s5720ei_firmware -
ibm cognos_metrics_manager 10.1.1
huawei smc2.0 v100r002c02
huawei s5700li_firmware -
redhat enterprise_linux_desktop 5.0
canonical ubuntu_linux 15.04
suse linux_enterprise_debuginfo 11
huawei quidway_s9300_firmware -
opensuse opensuse 13.2
redhat enterprise_linux_eus 7.5
huawei 9700_firmware -
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_server_tus 7.3
oracle http_server 11.1.1.9.0
huawei oceanstor_vis6600t_firmware -
oracle http_server 12.1.3.0.0
huawei s2700_firmware -
redhat enterprise_linux_eus 7.7
opensuse opensuse 13.1
huawei oceanstor_s5600t_firmware -
canonical ubuntu_linux 12.04
fujitsu sparc_enterprise_m5000_firmware *
huawei oceanstor_s5500t_firmware -
huawei oceanstor_9000_firmware -
huawei s3700_firmware -
huawei policy_center v100r003c00
suse linux_enterprise_server 12
ibm cognos_metrics_manager 10.1
huawei e6000_firmware -
redhat enterprise_linux_eus 7.1
huawei ultravr v100r003c00
redhat enterprise_linux_server_tus 7.6
huawei oceanstor_18800f_firmware -
oracle communications_policy_management *
huawei oceanstor_s2600t_firmware -
ibm cognos_metrics_manager 10.2.1
redhat enterprise_linux_server_tus 7.7
fujitsu sparc_enterprise_m4000_firmware *
oracle http_server 12.2.1.2.0
huawei s2750_firmware -
suse linux_enterprise_desktop 11
debian debian_linux 8.0
redhat enterprise_linux_workstation 5.0
redhat enterprise_linux_server_aus 7.4
huawei oceanstor_18800_firmware -
redhat enterprise_linux_workstation 6.0
huawei s7700_firmware -
huawei s5700si_firmware -
huawei s5710hi_firmware -
suse linux_enterprise_server 10
canonical ubuntu_linux 14.04
CVE-2015-3911 HIGH

Huawei E587 Mobile WiFi with firmware before 11.203.30.00.00 allows remote attackers to bypass authentication, change configurations, send messages, and cause a denial of service (device restart) via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei e587_mobile_wifi_firmware *
CVE-2015-3912 MEDIUM

Huawei E355s Mobile WiFi with firmware before 22.158.45.02.625 and WEBUI before 13.100.04.01.625 allows remote attackers to obtain sensitive configuration information by sniffing the network or sending unspecified commands.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei webui *
huawei e355s_mobile_wifi_firmware *
CVE-2015-3913 HIGH

The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted ICMP request message.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s6300ei_firmware v200r003c00spc300
huawei s9700_firmware v200r002c00spc300
huawei s2300_firmware v100r006c00
huawei s2750ei_firmware v200r006c00spc500
huawei s5700ei_firmware v200r002c00spc300
huawei s5300hi_firmware v200r002c00spc300
huawei s5700li_firmware v200r003c00spc300
huawei s7700_firmware v200r001c00spc300
huawei s5700li_firmware v200r005c00spc300
huawei s6300ei_firmware v200r001c00spc300
huawei s2300_firmware v100r006c05
huawei s3300_firmware v100r006c05
huawei s5300ei_firmware v200r002c00spc300
huawei s5300ei_firmware v200r005c00spc300
huawei s5300li_firmware v200r006c00spc500
huawei s5700li_firmware v200r001c00spc300
huawei s9300_firmware v200r005c00spc300
huawei s5700hi_firmware v200r002c00spc300
huawei s5300li_firmware v200r002c00spc300
huawei s2350ei_firmware v200r001c00spc300
huawei s2700_firmware v100r006c03
huawei s2750ei_firmware v200r003c00spc300
huawei s12700_firmware v200r007c00spc500
huawei s7700_firmware v200r007c00spc500
huawei s2350ei_firmware v200r003c00spc300
huawei s5300ei_firmware v200r003c00spc300
huawei s2700_firmware v100r006c05
huawei s5300ei_firmware v200r001c00spc300
huawei s3700_firmware v100r006c05
huawei s6700ei_firmware v200r002c00spc300
huawei s5700si_firmware v200r003c00spc300
huawei s5720hi_firmware v200r006c00spc500
huawei s5300ei_firmware v100r006c00
huawei s2700_firmware v100r006c00
huawei s5300si_firmware v200r005c00spc300
huawei s2750ei_firmware v200r001c00spc300
huawei s5300si_firmware v200r001c00spc300
huawei s9700_firmware v200r001c00spc300
huawei s5300li_firmware v200r003c00spc300
huawei s5710hi_firmware v200r005c00spc300
huawei s5300li_firmware v200r007c00spc500
huawei s5300hi_firmware v200r001c00spc300
huawei s5710hi_firmware v200r003c00spc300
huawei s3300_firmware v100r006c03
huawei s7700_firmware v200r005c00spc300
huawei s5700ei_firmware v200r003c00spc300
huawei s2350ei_firmware v200r005c00spc300
huawei s6300ei_firmware v200r005c00spc300
huawei s5710hi_firmware v200r001c00spc300
huawei s5720hi_firmware v200r007c00spc500
huawei s2350ei_firmware v200r006c00spc500
huawei s3300_firmware v100r006c00
huawei s5300si_firmware v200r002c00spc300
huawei s2350ei_firmware v200r007c00spc500
huawei s5700hi_firmware v200r003c00spc300
huawei s9700_firmware v200r007c00spc500
huawei s5700hi_firmware v200r001c00spc300
huawei s5700hi_firmware v200r005c00spc300
huawei s2750ei_firmware v200r002c00spc300
huawei s9300_firmware v200r002c00spc300
huawei s2300_firmware v100r006c03
huawei s5300si_firmware v200r003c00spc300
huawei s9700_firmware v200r003c00spc500
huawei s5700si_firmware v200r005c00spc300
huawei s6300ei_firmware v200r002c00spc300
huawei s5700si_firmware v200r002c00spc300
huawei s9700_firmware v200r005c00spc300
huawei s5700ei_firmware v100r006c00
huawei s12700_firmware v200r005c00spc300
huawei s7700_firmware v200r006c00spc500
huawei s9300_firmware v200r006c00spc500
huawei s5300si_firmware v100r006c00
huawei s12700_firmware v200r006c00spc500
huawei s5710hi_firmware v200r002c00spc300
huawei s2350ei_firmware v200r002c00spc300
huawei s2750ei_firmware v200r005c00spc300
huawei s5700si_firmware v100r006c00
huawei s6700ei_firmware v200r003c00spc300
huawei s6700ei_firmware v200r005c00spc300
huawei s9700_firmware v200r006c00spc500
huawei s5700li_firmware v200r007c00spc500
huawei s6700ei_firmware v200r001c00spc300
huawei s5300hi_firmware v200r003c00spc300
huawei s5700si_firmware v200r001c00spc300
huawei s5700li_firmware v200r002c00spc300
huawei s5700li_firmware v200r006c00spc500
huawei s7700_firmware v200r003c00spc500
huawei s9300_firmware v200r007c00spc500
huawei s3700_firmware v100r006c03
huawei s5300li_firmware v200r001c00spc300
huawei s3700_firmware v100r006c00
huawei s5700ei_firmware v200r005c00spc300
huawei s7700_firmware v200r002c00spc300
huawei s2750ei_firmware v200r007c00spc500
huawei s9300_firmware v200r001c00spc300
huawei s5700ei_firmware v200r001c00spc300
huawei s9300_firmware v200r003c00spc500
huawei s5300hi_firmware v200r005c00spc300
huawei s5300li_firmware v200r005c00spc300
CVE-2015-4421 HIGH

The tzdriver module in Huawei Mate 7 (Mate7-TL10) smartphones before V100R001CHNC00B126SP03 allows local users to gain privileges or cause a denial of service (memory corruption) via an unspecified input.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_7_firmware *
CVE-2015-4422 HIGH

The TEEOS module in Huawei Mate 7 (Mate7-TL10) smartphones before V100R001CHNC00B126SP03 allows local users with root permissions to gain privileges or cause a denial of service (memory corruption) via a crafted application.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_7_firmware *
CVE-2015-4629 HIGH

Huawei E5756S before V200R002B146D23SP00C00 allows remote attackers to read device configuration information, enable PIN/PUK authentication, and perform other unspecified actions.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei e5756s_firmware *
CVE-2015-6586 MEDIUM

The mDNS module in Huawei WLAN AC6005, AC6605, and ACU2 devices with software before V200R006C00SPC100 allows remote attackers to obtain sensitive information by leveraging failure to restrict processing of mDNS unicast queries to the link local network.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei wlan_ac6605_firmware *
huawei wlan_acu2_firmware *
huawei wlan_ac6005_firmware *
CVE-2015-6592 HIGH

Huawei UAP2105 before V300R012C00SPC160(BootRom) does not require authentication to the serial port or the VxWorks shell.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-254,

Products Affected

Vendor Product Version
huawei uap2105_firmware v300r011c0spc100
huawei uap2105_firmware v300r011c01spc110
huawei uap2105_firmware v300r011c01b030
huawei uap2105_firmware v300r011c01b028
CVE-2015-7254 MEDIUM

Directory traversal vulnerability on Huawei HG532e, HG532n, and HG532s devices allows remote attackers to read arbitrary files via a .. (dot dot) in an icon/ URI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei hg532e -
huawei hg532s -
huawei hg532n -
CVE-2015-7740 MEDIUM

Huawei P7 before P7-L00C17B851, P7-L05C00B851, and P7-L09C92B851 and P8 ALE-UL00 before ALE-UL00B211 allows local users to cause a denial of service (OS crash) via vectors involving an application that passes crafted input to the GPU driver.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p8_ale-ul00_firmware *
huawei p7_firmware *
CVE-2015-7841 HIGH

The login page of the server on Huawei FusionServer rack servers RH2288 V3 with software before V100R003C00SPC603, RH2288H V3 with software before V100R003C00SPC503, XH628 V3 with software before V100R003C00SPC602, RH1288 V3 with software before V100R003C00SPC602, RH2288A V2 with software before V100R002C00SPC701, RH1288A V2 with software before V100R002C00SPC502, RH8100 V3 with software before V100R003C00SPC110, CH222 V3 with software before V100R001C00SPC161, CH220 V3 with software before V100R001C00SPC161, and CH121 V3 with software before V100R001C00SPC161 allows remote attackers to bypass access restrictions and enter commands via unspecified parameters, as demonstrated by a "user creation command."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionserver_ch220_v3 v100r001c00
huawei fusionserver_ch121_v3 v100r001c00
huawei fusionserver_rh1288a_v2 v100r002c00
huawei fusionserver_xh628_v3 v100r003c00
huawei fusionserver_rh8100_v3 v100r003c00
huawei fusionserver_rh1288_v3 v100r003c00spc100
huawei fusionserver_rh2288_v3 v100r003c00
huawei fusionserver_ch222_v3 v100r001c00
huawei fusionserver_rh2288a_v2 v100r002c00
huawei fusionserver_rh2288h_v3 v100r003c00
CVE-2015-7842 MEDIUM

Huawei FusionServer rack servers RH2288 V3 with software before V100R003C00SPC603, RH2288H V3 with software before V100R003C00SPC503, XH628 V3 with software before V100R003C00SPC602, RH1288 V3 with software before V100R003C00SPC602, RH2288A V2 with software before V100R002C00SPC701, RH1288A V2 with software before V100R002C00SPC502, RH8100 V3 with software before V100R003C00SPC110, CH222 V3 with software before V100R001C00SPC161, CH220 V3 with software before V100R001C00SPC161, and CH121 V3 with software before V100R001C00SPC161 allow remote authenticated operators to change server information by leveraging failure to verify user permissions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,

Products Affected

Vendor Product Version
huawei ch220_v3_firmware *
huawei ch121_v3_firmware *
huawei rh2288h_v3_firmware *
huawei rh1288a_v2_firmware *
huawei rh2288_v3_firmware *
huawei rh1288_v3_firmware *
huawei rh8100_v3_firmware *
huawei ch222_v3_firmware *
huawei xh628_v3_firmware *
huawei rh2288a_v2_firmware *
CVE-2015-7843 MEDIUM

The management interface on Huawei FusionServer rack servers RH2288 V3 with software before V100R003C00SPC603, RH2288H V3 with software before V100R003C00SPC503, XH628 V3 with software before V100R003C00SPC602, RH1288 V3 with software before V100R003C00SPC602, RH2288A V2 with software before V100R002C00SPC701, RH1288A V2 with software before V100R002C00SPC502, RH8100 V3 with software before V100R003C00SPC110, CH222 V3 with software before V100R001C00SPC161, CH220 V3 with software before V100R001C00SPC161, and CH121 V3 with software before V100R001C00SPC161 does not limit the number of query attempts, which allows remote authenticated users to obtain credentials of higher-level users via a brute force attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
huawei fusionserver_ch220_v3 v100r001c00
huawei fusionserver_ch121_v3 v100r001c00
huawei fusionserver_rh1288a_v2 v100r002c00
huawei fusionserver_xh628_v3 v100r003c00
huawei fusionserver_rh8100_v3 v100r003c00
huawei fusionserver_rh1288_v3 v100r003c00spc100
huawei fusionserver_rh2288_v3 v100r003c00
huawei fusionserver_ch222_v3 v100r001c00
huawei fusionserver_rh2288a_v2 v100r002c00
huawei fusionserver_rh2288h_v3 v100r003c00
CVE-2015-7844 HIGH

Huawei FusionAccess with software V100R005C10,V100R005C20 could allow attackers to craft and send a malformed HDP protocol packet to cause the virtual cloud desktop to be displaying an error and not usable.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei fusionaccess v100r005c10
huawei fusionaccess v100r005c20
CVE-2015-7845 MEDIUM

The exception handling mechanism in the CLI Module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V100R001C20SPH605 allows remote attackers to cause a denial of service (CLI outage) via crafted SSH packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei espace_firmware *
CVE-2015-7846 LOW

Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access to the CF card to obtain sensitive information.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei ar2200_firmware v200r003c01spc800
huawei ar200_firmware v200r003c01spc100
huawei ar2200_firmware v200r003c01spc300
huawei ar200_firmware v200r003c00spc200
huawei ar2200_firmware v200r003c01spc100
huawei ar3200_firmware v200r003c01spc500
huawei s7700_firmware v200r002c00spc100
huawei s7700_firmware v200r001c00spc300
huawei s9300_firmware v200r006c00spc300
huawei ar200_firmware v200r003c00spc100
huawei s9700_firmware v200r003c00spc500
huawei ar1200_firmware v200r003c01spc100
huawei ar2200_firmware v200r003c01spc900
huawei s9700_firmware v200r005c00spc300
huawei ar1200_firmware v200r003c01spc200
huawei ar1200_firmware v200r003c00spc200
huawei ar3200_firmware v200r003c01spc200
huawei s7700_firmware v200r006c00spc300
huawei ar2200_firmware v200r003c00spc100
huawei s7700_firmware v200r006c00spc500
huawei ar3200_firmware v200r003c01spc800
huawei s9300_firmware v200r005c00spc300
huawei ar1200_firmware v200r003c01spc900
huawei ar2200_firmware v200r003c01spc200
huawei s9700_firmware v200r006c00spc300
huawei s9300_firmware v200r006c00spc500
huawei ar1200_firmware v200r003c01spc600
huawei ar3200_firmware v200r003c00spc200
huawei ar1200_firmware v200r003c00spc100
huawei ar3200_firmware v200r003c01spc100
huawei ar2200_firmware v200r003c01spc600
huawei ar200_firmware v200r003c01spc800
huawei ar1200_firmware v200r003c01spc500
huawei s9700_firmware v200r006c00spc500
huawei ar1200_firmware v200r003c01spc300
huawei s9700_firmware v200r002c00spc100
huawei s9700_firmware v200r001c00spc300
huawei ar200_firmware v200r003c01spc900
huawei ar2200_firmware v200r003c00spc200
huawei s7700_firmware v200r003c00spc500
huawei ar200_firmware v200r003c01spc300
huawei s9300_firmware v200r002c00spc100
huawei ar200_firmware v200r003c01spc600
huawei ar200_firmware v200r003c01spc200
huawei ar3200_firmware v200r003c01spc300
huawei ar3200_firmware v200r003c01spc600
huawei s7700_firmware v200r005c00spc300
huawei ar2200_firmware v200r003c01spc500
huawei ar200_firmware v200r003c01spc500
huawei ar1200_firmware v200r003c01spc800
huawei s9300_firmware v200r001c00spc300
huawei ar3200_firmware v200r003c01spc900
huawei s9300_firmware v200r003c00spc500
huawei ar3200_firmware v200r003c00spc100
CVE-2015-7847 MEDIUM

Huawei MBB (Mobile Broadband) product E3272s with software versions earlier than E3272s-153TCPU-V200R002B491D09SP00C00 has a Denial of Service (DoS) vulnerability. An attacker could send a malicious packet to the Common Gateway Interface (CGI) of a target device and make it fail while setting the port attribute, which causes a DoS attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei e3272s_firmware -
CVE-2015-8083 HIGH

An unspecified module in Huawei eSpace U1910, U1911, U1930, U1960, U1980, and U1981 unified gateways with software before V200R003C00SPC300 does not properly initialize memory when processing timeout messages, which allows remote attackers to cause a denial of service (out-of-bounds memory access and device restart) via unknown vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei espace_firmware *
CVE-2015-8084 HIGH

Huawei USG5500, USG2100, USG2200, and USG5100 unified security gateways with software before V300R001C10SPC600, when "DHCP Snooping" is enabled and either "option82 insert" or "option82 rebuild" is enabled on an interface, allow remote attackers to cause a denial of service (reboot) via crafted DHCP packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei unified_security_gateway_firmware *
CVE-2015-8085 MEDIUM

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 make it easier for remote authenticated administrators to obtain and decrypt passwords by leveraging selection of a reversible encryption algorithm.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-326,

Products Affected

Vendor Product Version
huawei quidway_s9300_firmware v200r001c00spc300
huawei s5700_firmware v200r002c00
huawei s5700_firmware v200r006c00
huawei quidway_s9300_firmware v200r003c00spc500
huawei quidway_s9300_firmware v200r002c00spc100
huawei s5700_firmware v200r005c00
huawei s9300_firmware v200r005c00spc300
huawei ar_firmware v200r001
huawei ar_firmware v200r005c30
huawei s5300_firmware v200r005c00spc500
huawei quidway_s5300_firmware v200r001c00spc300
huawei ar_firmware v200r002
huawei ar_firmware v200r003
huawei s9300_firmware v200r006c00spc500
huawei s12700_firmware v200r005c00
huawei s12700_firmware v200r006c00
huawei ar_firmware v200r005c10
huawei ar_firmware v200r005c20
huawei s5300_firmware v200r002c00
huawei s5700_firmware v200r001c00
huawei s5700_firmware v200r003c00
huawei s5300_firmware v200r006c00spc500
CVE-2015-8086 MEDIUM

Huawei AR routers with software before V200R007C00SPC100; Quidway S9300 routers with software before V200R009C00; S12700 routers with software before V200R008C00SPC500; S9300, Quidway S5300, and S5300 routers with software before V200R007C00; and S5700 routers with software before V200R007C00SPC500 makes it easier for remote authenticated administrators to obtain encryption keys and ciphertext passwords via vectors related to key storage.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-326,

Products Affected

Vendor Product Version
huawei quidway_s9300_firmware v200r001c00spc300
huawei s5700_firmware v200r002c00
huawei s5700_firmware v200r006c00
huawei quidway_s9300_firmware v200r003c00spc500
huawei quidway_s9300_firmware v200r002c00spc100
huawei s5700_firmware v200r005c00
huawei s9300_firmware v200r005c00spc300
huawei ar_firmware v200r001
huawei ar_firmware v200r005c30
huawei s5300_firmware v200r005c00spc500
huawei quidway_s5300_firmware v200r001c00spc300
huawei ar_firmware v200r002
huawei ar_firmware v200r003
huawei s9300_firmware v200r006c00spc500
huawei s12700_firmware v200r005c00
huawei s12700_firmware v200r006c00
huawei ar_firmware v200r005c10
huawei ar_firmware v200r005c20
huawei s5300_firmware v200r002c00
huawei s5700_firmware v200r001c00
huawei s5700_firmware v200r003c00
huawei s5300_firmware v200r006c00spc500
CVE-2015-8087 MEDIUM

Huawei NE20E-S, NE40E-M, and NE40E-M2 routers with software before V800R007C10SPC100 and NE40E and NE80E routers with software before V800R007C00SPC100 allows remote attackers to send packets to other VPNs and conduct flooding attacks via a crafted MPLS forwarding packet, aka a "VPN routing and forwarding (VRF) hopping vulnerability."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei ne_router_software *
CVE-2015-8088 HIGH

Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 before MT7-CL00C92B354 and P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, and GRA-UL10 before GRA-UL10C00B220 allows attackers to cause a denial of service (reboot) or execute arbitrary code via a crafted application.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul100
huawei mate_7_firmware mt7-cl00
huawei p8_firmware gra-ul10
huawei p8_firmware gra-cl10
huawei mate_7_firmware mt7-tl10
huawei mate_7_firmware mt7-tl00
huawei p8_firmware gra-cl100
huawei p8_firmware gra-tl00
huawei mate_7_firmware mt7-ul00
CVE-2015-8089 MEDIUM

The GPU driver in Huawei P7 phones with software P7-L00 before P7-L00C17B851, P7-L05 before P7-L05C00B851, and P7-L09 before P7-L09C92B851 allows local users to read or write to arbitrary kernel memory locations and consequently cause a denial of service (system crash) or gain privileges via a crafted application.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei p7-l09_firmware -
huawei p7-l00_firmware -
huawei p7-l05_firmware -
CVE-2015-8223 MEDIUM

Huawei P7 before P7-L00C17B851, P7-L05C00B851, and P7-L09C92B85, and P8 ALE-UL00 before ALE-UL00B211 allows local users to cause a denial of service (OS crash) by leveraging camera permissions and via crafted input to the camera driver.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,

Products Affected

Vendor Product Version
huawei p7_firmware *
huawei p8_ale-ul00_firmware -
CVE-2015-8224 MEDIUM

Huawei P8 before GRA-CL00C92B210, before GRA-L09C432B200, before GRA-TL00C01B210, and before GRA-UL00C00B210 allows remote attackers to obtain user equipment (aka UE) measurements of signal strengths.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei p8_firmware -
CVE-2015-8225 HIGH

The Joint Photographic Experts Group Processing Unit (JPU) driver in Huawei ALE smartphones with software before ALE-UL00C00B220 and ALE-TL00C01B220 and GEM-703L smartphones with software before V100R001C233B111 allows remote attackers to cause a denial of service (crash) via a crafted application with the system or camera permission, a different vulnerability than CVE-2015-8226.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ale_firmware -
huawei gem-703l_firmware -
CVE-2015-8226 HIGH

The Joint Photographic Experts Group Processing Unit (JPU) driver in Huawei ALE smartphones with software before ALE-UL00C00B220 and ALE-TL00C01B220 and GEM-703L smartphones with software before V100R001C233B111 allows remote attackers to cause a denial of service (crash) via a crafted application with the system or camera permission, a different vulnerability than CVE-2015-8225.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ale_firmware -
huawei gem-703l_firmware -
CVE-2015-8227 HIGH

The built-in web server in Huawei VP9660 multi-point control unit with software before V200R001C30SPC700 allows remote administrators to obtain sensitive information or cause a denial of service via a crafted message.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei vp_9660_firmware v200r001c02
huawei vp_9660_firmware v200r001c01
huawei vp_9660_firmware *
CVE-2015-8228 MEDIUM

Directory traversal vulnerability in the SFTP server in Huawei AR 120, 150, 160, 200, 500, 1200, 2200, 3200, and 3600 routers with software before V200R006SPH003 allows remote authenticated users to access arbitrary directories via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei ar_firmware *
CVE-2015-8229 MEDIUM

Huawei eSpace U2980 unified gateway with software before V100R001C10 and U2990 with software before V200R001C10 allow remote authenticated users to cause a denial of service via crafted signaling packets from a registered device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei espace_firmware *
CVE-2015-8230 HIGH

Memory leak in Huawei eSpace 8950 IP phones with software before V200R003C00SPC300 allows remote attackers to cause a denial of service (memory consumption and restart) via a large number of crafted ARP packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei espace_8950 -
huawei espace_8950 v200r003c00spc200
CVE-2015-8231 HIGH

Huawei eSpace 7910 and 7950 IP phones with software before V200R002C00SPC800 allow remote attackers with established sessions to cause a denial of service (device restart) via unspecified packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei espace_7910 v200r002c00spc101
huawei espace_7910 v200r002c00spc600
huawei espace_7910 v200r002c00spc100
huawei espace_7950 v200r002c00spc300
huawei espace_7950 v200r002c00spc100
huawei espace_7950 v200r002c00spc700
huawei espace_7950 v200r002c00spc600
huawei espace_7910 v200r002c00spc700
huawei espace_7950 v200r002c00spc101
huawei espace_7910 v200r002c00spc300
CVE-2015-8265 MEDIUM

Huawei Mobile WiFi E5151 routers with software before E5151s-2TCPU-V200R001B146D27SP00C00 and E5186 routers with software before V200R001B310D01SP00C00 allow DNS query packets using the static source port, which makes it easier for remote attackers to spoof responses via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei e5186_firmware *
huawei e5151_firmware *
CVE-2015-8303 LOW

Huawei Document Security Management (DSM) with software before V100R002C05SPC661 does not clear the clipboard when closing a secure file, which allows local users to obtain sensitive information by pasting the contents to another file.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei document_security_management v100r002c03spc005
CVE-2015-8304 HIGH

Integer overflow in Huawei P7 phones with software before P7-L07 V100R001C01B606 allows remote attackers to gain privileges via a crafted application with the system or camera permission.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p7_firmware *
CVE-2015-8305 HIGH

Huawei Sophia-L10 smartphones with software before P7-L10C900B852 allow attackers to cause a denial of service (system panic) via a crafted application with the system or camera privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p7_firmware *
CVE-2015-8306 HIGH

Buffer overflow in the HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 allows attackers to cause a denial of service (system crash) or execute arbitrary code via an unspecified parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul100
huawei p8_firmware gra-ul10
huawei p8_firmware gra-cl10
huawei p8_firmware gra-cl100
huawei p8_firmware gra-tl00
CVE-2015-8307 HIGH

The Graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application with the graphics permission, aka an "interface access control vulnerability," a different vulnerability than CVE-2015-8680.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul10
huawei mate_s_firmware crr-cl00
huawei p8_firmware gra-cl00
huawei p8_firmware gra-cl10
huawei mate_s_firmware crr-tl00
huawei mate_s_firmware crr-ul00
huawei p8_firmware gra-ul00
huawei p8_firmware gra-tl00
CVE-2015-8318 HIGH

Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2015-8319.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul10
huawei mate_s_firmware crr-cl00
huawei p8_firmware gra-cl00
huawei p8_firmware gra-cl10
huawei mate_s_firmware crr-tl00
huawei mate_s_firmware crr-ul00
huawei p8_firmware gra-ul00
huawei p8_firmware gra-tl00
CVE-2015-8319 HIGH

Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2015-8318.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul10
huawei mate_s_firmware crr-cl00
huawei p8_firmware gra-cl00
huawei p8_firmware gra-cl10
huawei mate_s_firmware crr-tl00
huawei mate_s_firmware crr-ul00
huawei p8_firmware gra-ul00
huawei p8_firmware gra-tl00
CVE-2015-8331 MEDIUM

The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C00SPC200 does not properly invalidate the session ID when an "abnormal exit" occurs, which allows remote attackers to conduct replay attacks via the session ID.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei vcn500 v100r002c00spc200b010
CVE-2015-8332 MEDIUM

Huawei Video Content Management (VCM) before V100R001C10SPC001 does not properly "authenticate online user identities and privileges," which allows remote authenticated users to gain privileges and perform a case operation as another user via a crafted message, aka "Horizontal Privilege Escalation Vulnerability."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei vcm5010_firmware *
huawei vcm5020_firmware *
CVE-2015-8333 MEDIUM

The Operation and Maintenance Unit (OMU) in Huawei VCN500 with software before V100R002C00SPC200 allows remote authenticated users to change the IP address of the media server via crafted packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei vcn500 v100r002c00spc200b010
CVE-2015-8334 MEDIUM

SQL injection vulnerability in the Operation and Maintenance Unit (OMU) in Huawei VCN500 before V100R002C00SPC201 allows remote authenticated users to execute arbitrary SQL commands via a crafted HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
huawei vcn500_firmware v100r002c00spc200b010
huawei vcn500_firmware v100r002c00spc200
CVE-2015-8335 MEDIUM

Huawei VCN500 with software before V100R002C00SPC201 logs passwords in cleartext, which allows remote authenticated users to obtain sensitive information by triggering log generation and then reading the log.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei vcn500 v100r002c00spc200
huawei vcn500 v100r002c00spc200b010
CVE-2015-8336 MEDIUM

Huawei FusionCompute with software before V100R005C10SPC700 allows remote authenticated users to obtain sensitive "role and permission" information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,CWE-264,

Products Affected

Vendor Product Version
huawei fusioncompute v100r003c00
huawei fusioncompute_firmware *
huawei fusioncompute v100r003c10
CVE-2015-8337 HIGH

The HIFI driver in Huawei P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, GRA-UL10 before GRA-UL10C00B220 and Mate7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 before MT7-CL00C92B354 allows remote attackers to cause a denial of service (invalid memory access and reboot) via unspecified vectors related to "input null pointer as parameter."

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul100
huawei mate_7_firmware mt7-cl00
huawei p8_firmware gra-ul10
huawei p8_firmware gra-cl10
huawei mate_7_firmware mt7-tl10
huawei mate_7_firmware mt7-tl00
huawei p8_firmware gra-cl100
huawei p8_firmware gra-tl00
huawei mate_7_firmware mt7-ul00
CVE-2015-8670 MEDIUM

Huawei LogCenter V100R001C10 could allow an authenticated attacker to add abnormal device information to the log collection module, causing denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei logcenter v100r001c10
CVE-2015-8671 MEDIUM

Huawei LogCenter V100R001C10 could allow an authenticated attacker to tamper with requests using a tool and submit a request to the server for privilege escalation, affecting some system functions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei logcenter v100r001c10
CVE-2015-8672 MEDIUM

The presentation transmission permission management mechanism in Huawei TE30, TE40, TE50, and TE60 multimedia video conferencing endpoints with software before V100R001C10SPC100 allows remote attackers to cause a denial of service (wired presentation outage) via unspecified vectors involving a wireless presentation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-19,

Products Affected

Vendor Product Version
huawei te60_firmware *
CVE-2015-8673 MEDIUM

Huawei TE30, TE40, TE50, and TE60 multimedia video conferencing endpoints with software before V100R001C10SPC100 do not require entry of the old password when changing the password for the Debug account, which allows physically proximate attackers to change the password by leveraging an unattended workstation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-255,

Products Affected

Vendor Product Version
huawei te40 -
huawei te50 -
huawei te60 -
huawei te30 -
huawei te60_firmware *
CVE-2015-8675 LOW

Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password information by reading the display.

CVSS 2.0

Severity: LOW

Problem Type: CWE-255,

Products Affected

Vendor Product Version
huawei s5300_firmware v200r005c02
CVE-2015-8676 HIGH

Memory leak in Huawei S5300EI, S5300SI, S5310HI, S6300EI/ S2350EI, and S5300LI Campus series switches with software V200R001C00 before V200R001SPH018, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; S9300, S7700, and S9700 Campus series switches with software V200R001C00 before V200R001SPH023, V200R002C00 before V200R003SPH011, and V200R003C00 before V200R003SPH011; and S2300 and S3300 Campus series switches with software V100R006C05 before V100R006SPH022 allows remote attackers to cause a denial of service (memory consumption and reboot) via a large number of ICMPv6 packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,CWE-399,

Products Affected

Vendor Product Version
huawei s5310hi_firmware *
huawei s2350ei_firmware *
huawei s5300si_firmware *
huawei s5300li_firmware *
huawei s9300_firmware v200r003c00
huawei s5300ei_firmware *
huawei s7700_firmware v200r003c00
huawei s9700_firmware v200r003c00
huawei s3300_firmware *
huawei s7700_firmware *
huawei s9700_firmware *
huawei s9300_firmware *
huawei s6300ei_firmware *
huawei s2300_firmware *
CVE-2015-8677 MEDIUM

Memory leak in Huawei S5300EI, S5300SI, S5310HI, and S6300EI Campus series switches with software V200R003C00 before V200R003SPH011 and V200R005C00 before V200R005SPH008; S2350EI and S5300LI Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH008, and V200R006C00 before V200R006SPH002; S9300, S7700, and S9700 Campus series switches with software V200R003C00 before V200R003SPH011, V200R005C00 before V200R005SPH009, and V200R006C00 before V200R006SPH003; S5720HI and S5720EI Campus series switches with software V200R006C00 before V200R006SPH002; and S2300 and S3300 Campus series switches with software V100R006C05 before V100R006SPH022 allows remote authenticated users to cause a denial of service (memory consumption and device restart) by logging in and out of the (1) HTTPS or (2) SFTP server, related to SSL session information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei s5310hi_firmware *
huawei s5720hi_firmware *
huawei s2350ei_firmware *
huawei s5300si_firmware *
huawei s5300li_firmware *
huawei s5300ei_firmware *
huawei s3300_firmware *
huawei s5720ei_firmware *
huawei s7700_firmware *
huawei s9700_firmware *
huawei s9300_firmware *
huawei s6300ei_firmware *
huawei s2300_firmware *
CVE-2015-8678 HIGH

The ION driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows remote attackers to cause a denial of service (crash) via a crafted application.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p8_firmware gra-tl00c01b220
huawei p8_firmware gra-cl00c92b220
huawei mate_s_firmware *
huawei p8_firmware gra-ul10c00b220
huawei p8_firmware gra-cl10c92b220
huawei p8_firmware gra-ul00c00b220
CVE-2015-8679 HIGH

The Maxim_smartpa_dev driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allow attackers to cause a denial of service (system crash) via a crafted application, which triggers an invalid memory access.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul10
huawei mate_s_firmware crr-cl00
huawei p8_firmware gra-cl00
huawei p8_firmware gra-cl10
huawei mate_s_firmware crr-tl00
huawei mate_s_firmware crr-ul00
huawei p8_firmware gra-ul00
huawei p8_firmware gra-tl00
CVE-2015-8680 HIGH

The Graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application with the graphics permission, aka an "interface access control vulnerability," a different vulnerability than CVE-2015-8307.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul10
huawei mate_s_firmware crr-cl00
huawei p8_firmware gra-cl00
huawei p8_firmware gra-cl10
huawei mate_s_firmware crr-tl00
huawei mate_s_firmware crr-ul00
huawei p8 -
huawei p8_firmware gra-ul00
huawei p8_firmware gra-tl00
CVE-2015-8681 HIGH

The ovisp driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application with the camera permission, aka an "interface access control vulnerability."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei p8_firmware gra-ul10
huawei mate_s_firmware crr-cl00
huawei p8_firmware gra-cl00
huawei p8_firmware gra-cl10
huawei mate_s_firmware crr-tl00
huawei mate_s_firmware crr-ul00
huawei p8_firmware gra-ul00
huawei p8_firmware gra-tl00
CVE-2015-8682 HIGH

The Video0 driver in Huawei P8 smartphones with software GRA-UL00 before GRA-UL00C00B350, GRA-UL10 before GRA-UL10C00B350, GRA-TL00 before GRA-TL00C01B350, GRA-CL00 before GRA-CL00C92B350, and GRA-CL10 before GRA-CL10C92B350 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to obtain sensitive information from stack memory or cause a denial of service (system crash) via a crafted application, which triggers an invalid memory access.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_s_firmware *
huawei p8_firmware *
CVE-2016-1495 HIGH

Integer overflow in the graphics drivers in Huawei Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, which triggers a heap-based buffer overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_s_firmware *
CVE-2016-1496 HIGH

The graphics driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 allows attackers to cause a denial of service (system crash) via a crafted application, aka a "semaphore deadlock issue."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei p8_firmware gra-tl00c01b220
huawei p8_firmware gra-cl00c92b220
huawei p8_firmware gra-ul10c00b220
huawei p8_firmware gra-cl10c92b220
huawei p8_firmware gra-ul00c00b220
CVE-2016-2214 MEDIUM

Cross-site scripting (XSS) vulnerability in an unspecified portal authentication page in Huawei Agile Controller-Campus with software before V100R001C00SPC319 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei agile_controller-campus v100r001c00spc315
CVE-2016-2231 HIGH

The Windows-based Host Interface Program (WHIP) service on Huawei SmartAX MT882 devices V200R002B022 Arg relies on the client to send a length field that is consistent with a buffer size, which allows remote attackers to cause a denial of service (device outage) or possibly have unspecified other impact via crafted traffic on TCP port 8701.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-19,

Products Affected

Vendor Product Version
huawei mt882_firmware *
CVE-2016-2314 MEDIUM

GlobespanVirata ftpd 1.0, as used on Huawei SmartAX MT882 devices V200R002B022 Arg, allows remote authenticated users to cause a denial of service (device outage) by using the FTP MKD command to create a directory with a long name, and then using certain other commands.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-17,

Products Affected

Vendor Product Version
huawei mt882_firmware v200r002b022_arg
CVE-2016-2404 MEDIUM

Huawei switches S5700, S6700, S7700, S9700 with software V200R001C00SPC300, V200R002C00SPC100, V200R003C00SPC300, V200R005C00SPC500, V200R006C00; S12700 with software V200R005C00SPC500, V200R006C00; ACU2 with software V200R005C00SPC500, V200R006C00 have a permission control vulnerability. If a switch enables Authentication, Authorization, and Accounting (AAA) for permission control and user permissions are not appropriate, AAA users may obtain the virtual type terminal (VTY) access permission, resulting in privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei s6700_firmware v200r005c00spc500
huawei acu2_firmware v200r005c00spc500
huawei s9700_firmware v200r006c00
huawei s9700_firmware v200r005c00spc500
huawei s7700_firmware v200r006c00
huawei acu2_firmware v200r006c00
huawei s6700_firmware v200r001c00spc300
huawei s9700_firmware v200r002c00spc100
huawei s5700_firmware v200r001c00spc300
huawei s6700_firmware v200r003c00spc300
huawei s12700_firmware v200r006c00
huawei s7700_firmware v200r002c00spc100
huawei s7700_firmware v200r001c00spc300
huawei s9700_firmware v200r001c00spc300
huawei s9700_firmware v200r003c00spc300
huawei s7700_firmware v200r003c00spc300
huawei s5700_firmware v200r006c00
huawei s6700_firmware v200r006c00
huawei s6700_firmware v200r002c00spc100
huawei s12700_firmware v200r005c00spc500
huawei s7700_firmware v200r005c00spc500
huawei s5700_firmware v200r003c00spc300
huawei s5700_firmware v200r005c00spc500
huawei s5700_firmware v200r002c00spc100
CVE-2016-2405 HIGH

Huawei Policy Center with software before V100R003C10SPC020 allows remote authenticated users to gain privileges and cause a denial of service (system crash) via a crafted URL.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei policy_center_firmware v100r003c10
CVE-2016-2406 MEDIUM

The permission control module in Huawei Document Security Management (aka DSM) before V100R002C05SPC670 allows remote authenticated users to obtain sensitive information from encrypted documents by leveraging incorrect control of permissions on the PrintScreen button.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,

Products Affected

Vendor Product Version
huawei document_security_management *
CVE-2016-2780 HIGH

Untrusted search path vulnerability in Huawei UTPS before UTPS-V200R003B015D15SP00C983 allows local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL in an unspecified directory.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei utps_firmware 23.009.09.00.983
CVE-2016-2855 HIGH

The Huawei Mobile Broadband HL Service 22.001.25.00.03 and earlier uses a weak ACL for the MobileBrServ program data directory, which allows local users to gain SYSTEM privileges by modifying VERSION.dll.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei mobile_broadband_hl_service *
CVE-2016-3675 MEDIUM

SQL injection vulnerability in Huawei Policy Center with software before V100R003C10SPC020 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors related to system databases.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N 2.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
huawei policy_center_firmware v100r003c10
huawei policy_center_firmware v100r003c00
CVE-2016-3676 MEDIUM

Huawei E3276s USB modems with software before E3276s-150TCPU-V200R002B436D09SP00C00 allow man-in-the-middle attackers to intercept, spoof, or modify network traffic via unspecified vectors related to a fake network.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
huawei e3276s_firmware e3276s-150tcpu-v200r002b250d04sp00c00
CVE-2016-3677 MEDIUM

The Huawei Wear App application before 15.0.0.307 for Android does not validate SSL certificates, which allows local users to have unspecified impact via unknown vectors, aka HWPSIRT-2016-03008.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,CWE-345,

Products Affected

Vendor Product Version
huawei wear_app -
huawei hilink_app -
CVE-2016-3678 HIGH

Huawei Quidway S9700, S5700, S5300, S9300, and S7700 switches with software before V200R003SPH012 allow remote attackers to cause a denial of service (switch restart) via crafted traffic.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s5700_firmware v200r003c00spc500
huawei s5300_firmware v200r003c00spc500
huawei s9300_firmware v200r003c00spc500
huawei s9700_firmware v200r003c00spc500
huawei s7700_firmware v200r003c00spc500
CVE-2016-3680 HIGH

Buffer overflow in the Wi-Fi driver in Huawei Mate 8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to cause a denial of service (crash) or possibly gain privileges via a crafted application, aka HWPSIRT-2016-03020.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_8_firmware -
CVE-2016-3681 HIGH

Buffer overflow in the Wi-Fi driver in Huawei Mate 8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to cause a denial of service (crash) or possibly gain privileges via a crafted application, aka HWPSIRT-2016-03021.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_8_firmware -
CVE-2016-3950 MEDIUM

Huawei AR3200 routers with software before V200R006C10SPC300 allow remote authenticated users to cause a denial of service (restart) via crafted packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ar3200_firmware v200r005c30
huawei ar3200_firmware v200r005c32
huawei ar3200_firmware v200r005c20
CVE-2016-4005 HIGH

The Huawei Hilink App application before 3.19.2 for Android does not validate SSL certificates, which allows local users to have unspecified impact via unknown vectors, aka HWPSIRT-2016-03008.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-310,

Products Affected

Vendor Product Version
huawei hilink_app *
CVE-2016-4057 MEDIUM

Huawei FusionCompute before V100R005C10SPC700 allows remote authenticated users to cause a denial of service (resource consumption) via a large number of crafted packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei fusioncompute *
CVE-2016-4058 LOW

Cross-site scripting (XSS) vulnerability in Huawei Policy Center before V100R003C10SPC020 allows remote authenticated users to inject arbitrary web script or HTML via vectors related to "special characters on pages."

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei policy_center v100r003c00
huawei policy_center v100r003c10
CVE-2016-4086 LOW

Huawei HiSuite (In China) before 4.0.4.301 and (Out of China) before 4.0.4.204_ove allows remote attackers to install arbitrary apps on a connected phone via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei hisuite 2.3.35
huawei hisuite 2.3.15
huawei hisuite 2.3.55.1
huawei hisuite 2.3.55
huawei hisuite 2.3.42
huawei hisuite 2.3.28
huawei hisuite 2.3.50
CVE-2016-4087 MEDIUM

Huawei S12700 switches with software before V200R008C00SPC500 and S5700 switches with software before V200R005SPH010, when the debug switch is enabled, allows remote attackers to cause a denial of service or execute arbitrary code via crafted DNS packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s5700_firmware v200r003c00spc300
huawei s12700_firmware v200r005c00spc300
huawei s5700_firmware v200r002c00spc100
huawei s5700_firmware v200r005c00
huawei s5700_firmware v200r001c00
CVE-2016-4575 MEDIUM

Cross-site scripting (XSS) vulnerability in the email APP in Huawei PLK smartphones with software AL10C00 before AL10C00B211 and AL10C92 before AL10C92B211; ATH smartphones with software AL00C00 before AL00C00B361, CL00C92 before CL00C92B361, TL00HC01 before TL00HC01B361, and UL00C00 before UL00C00B361; CherryPlus smartphones with software TL00C00 before TL00C00B553, UL00C00 before UL00C00B553, and TL00MC01 before TL00MC01B553; and RIO smartphones with software AL00C00 before AL00C00B360 allows remote attackers to inject arbitrary web script or HTML via an email message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei ath_firmware cl00c92
huawei cherryplus_firmware ul00c00
huawei rio_firmware al00c00
huawei plk_firmware al10c00
huawei ath_firmware al00c00
huawei ath -
huawei ath_firmware ul00c00
huawei cherryplus_firmware tl00mc01
huawei plk_firmware al10c92
huawei cherryplus_firmware tl00c00
huawei ath_firmware tl00hc01
huawei cherryplus -
CVE-2016-4576 HIGH

Buffer overflow in the Application Specific Packet Filtering (ASPF) functionality in the Huawei IPS Module, NGFW Module, NIP6300, NIP6600, Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 devices with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimate parameters."

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei nip6300_firmware v500r001c00
huawei nip6600_firmware v500r001c00
huawei secospace_antiddos8000_firmware v500r001c00
huawei usg9500_firmware v500r001c00
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c00
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c00
huawei ips_module_firmware v500r001c00
CVE-2016-4577 MEDIUM

Buffer overflow in the Smart DNS functionality in the Huawei NGFW Module and Secospace USG6300, USG6500, USG6600, and USG9500 firewalls with software before V500R001C20SPC100 allows remote attackers to cause a denial of service or execute arbitrary code via a crafted packet, related to "illegitimate parameters."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c00
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c00
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c00
CVE-2016-5230 MEDIUM

Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to bypass permission checks and control partial module functions via a crafted app.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei mate_8_firmware nxt
CVE-2016-5231 MEDIUM

Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to bypass permission checks and delete user data via a crafted app.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei mate_8_firmware nxt
CVE-2016-5232 HIGH

Buffer overflow in Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to cause a denial of service (system crash) via a crafted app.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_8_firmware nxt
CVE-2016-5233 MEDIUM

Huawei Mate 8 smartphones with software NXT-AL10 before NXT-AL10C00B182, NXT-CL00 before NXT-CL00C92B182, NXT-DL00 before NXT-DL00C17B182, and NXT-TL00 before NXT-TL00C01B182 allow remote base stations to obtain sensitive subscriber signal strength information via vectors involving improper security status verification, aka HWPSIRT-2015-12007.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei mate_8_firmware -
CVE-2016-5234 HIGH

Buffer overflow in Huawei VP9660, VP9650, and VP9630 multipoint control unit devices with software before V500R002C00SPC200 and RSE6500 videoconference devices with software before V500R002C00SPC100, when an unspecified service is enabled, allows remote attackers to execute arbitrary code via a crafted packet, aka HWPSIRT-2016-05054.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei vp9600_series_firmware v200r001c30
huawei rse6500_firmware v100r001c00
huawei vp9600_series_firmware v200r001c01
huawei vp9600_series_firmware v200r001c02
CVE-2016-5365 HIGH

Stack-based buffer overflow in Huawei Honor WS851 routers with software 1.1.21.1 and earlier allows remote attackers to execute arbitrary commands with root privileges via unspecified vectors, aka HWPSIRT-2016-05051.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei honor_ws851_firmware *
CVE-2016-5366 MEDIUM

Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to modify configuration data via vectors related to a "file injection vulnerability," aka HWPSIRT-2016-05052.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei honor_ws851_firmware *
CVE-2016-5367 MEDIUM

Huawei Honor WS851 routers with software 1.1.21.1 and earlier allow remote attackers to obtain sensitive information via unspecified vectors, aka HWPSIRT-2016-05053.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei honor_ws851_firmware *
CVE-2016-5368 HIGH

Memory leak in Huawei AR3200 before V200R007C00SPC900 allows remote attackers to cause a denial of service (memory consumption) via a large number of crafted Multiprotocol Label Switching (MPLS) packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei ar3200_firmware v200r007c00
huawei ar3200_firmware v200r005c32
huawei ar3200_firmware v200r005c20
CVE-2016-5435 HIGH

Memory leak in Huawei IPS Module, NGFW Module, NIP6300, NIP6600, and Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 V500R001C00 before V500R001C20SPC100, when in hot standby networking where two devices are not directly connected, allows remote attackers to cause a denial of service (memory consumption and reboot) via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei huawei_firmware v5500r001c00
CVE-2016-5722 HIGH

Huawei OceanStor 5300 V3, 5500 V3, 5600 V3, 5800 V3, 6800 V3, 18800 V3, and 18500 V3 before V300R003C10 sends the plaintext session token in the HTTP header, which allows remote attackers to conduct replay attacks and obtain sensitive information by sniffing the network.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei ocean_stor_firmware *
CVE-2016-5723 HIGH

Huawei FusionInsight HD before V100R002C60SPC200 allows local users to gain root privileges via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei fusioninsight_hd v100r002c30
huawei fusioninsight_hd v100r002c50
CVE-2016-5821 HIGH

Huawei HiSuite before 4.0.4.204_ove (Out of China) and before 4.0.4.301 (China) use a weak ACL (FILE_WRITE_DATA for BUILTIN\Users) for the HiSuite service directory, which allows local users to gain SYSTEM privileges via a Trojan horse (1) SspiCli.dll or (2) USERENV.dll file or possibly other unspecified DLL files.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei hisuite *
CVE-2016-5822 HIGH

Huawei Oceanstor 5800 before V300R002C10SPC100 allows remote attackers to cause a denial of service (CPU consumption) via a large number of crafted HTTP packets.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei oceanstor_5800_v3 *
CVE-2016-5850 LOW

Cross-site scripting (XSS) vulnerability in the volume backup service module in Huawei Public Cloud Solution before 1.0.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei public_cloud_solution *
CVE-2016-6158 HIGH

Multiple cross-site request forgery (CSRF) vulnerabilities in Huawei WS331a routers with software before WS331a-10 V100R001C01B112 allow remote attackers to hijack the authentication of administrators for requests that (1) restore factory settings or (2) reboot the device via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei ws331a_router_firmware ws331a-10_v100r001c02b017sp01
CVE-2016-6159 MEDIUM

The management interface of Huawei WS331a routers with software before WS331a-10 V100R001C01B112 allows remote attackers to bypass authentication and obtain administrative access by sending "special packages" to the LAN interface.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei ws331a_router_firmware *
CVE-2016-6177 MEDIUM

The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. An authenticated attacker may send massive abnormal Network File System (NFS) packets, causing an anomaly in specific disk arrays.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei oceanstor_5800_v3_firmware v300r003c00
CVE-2016-6178 HIGH

Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before V800R007SPH019; NE5000E devices with software before V800R006SPH018; and CloudEngine devices 12800 with software before V100R003SPH010 and V100R005 before V100R005SPH006 allow remote attackers with control plane access to cause a denial of service or execute arbitrary code via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v100r005c10
huawei cloudengine_12800_firmware v100r005c00
huawei ne40e_firmware v600r008c20
huawei cx600_firmware v800r006c20
huawei cx600_firmware v600r008c20
huawei cloudengine_12800_firmware v100r003c00
huawei cx600_firmware v800r007c00
huawei ne40e_firmware v800r007c00
huawei ne40e_firmware v800r006c20
huawei ptn_6900-2-m8_firmware v800r007c00
huawei ne5000e_firmware v800r006c00
huawei cloudengine_12800_firmware v100r003c10
huawei ne40e_firmware v800r006c30
huawei cx600_firmware v800r006c00
huawei ne40e_firmware v800r006c00
CVE-2016-6179 MEDIUM

The WiFi driver in Huawei Honor 6 smartphones with software H60-L01 before H60-L01C00B850, H60-L11 before H60-L11C00B850, H60-L21 before H60-L21C00B850, H60-L02 before H60-L02C00B850, H60-L12 before H60-L12C00B850, and H60-L03 before H60-L03C01B850 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei honor_6_firmware *
CVE-2016-6180 MEDIUM

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6181, CVE-2016-6182, CVE-2016-6183, and CVE-2016-6184.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei honor_4c_firmware chm-ul00c00b535
huawei honor_4c_firmware chm-tl00hc00b556
huawei honor_4c_firmware chm-ul00c00b556
huawei honor_4c_firmware chm-tl00c01b556
huawei honor_4c_firmware chm-tl00c01_b535
huawei honor_4c_firmware chm-tl00hc00_b535
CVE-2016-6181 MEDIUM

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6180, CVE-2016-6182, CVE-2016-6183, and CVE-2016-6184.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei honor_4c_firmware chm-ul00c00b535
huawei honor_4c_firmware chm-tl00hc00b556
huawei honor_4c_firmware chm-ul00c00b556
huawei honor_4c_firmware chm-tl00c01b556
huawei honor_4c_firmware chm-tl00c01_b535
huawei honor_4c_firmware chm-tl00hc00_b535
CVE-2016-6182 HIGH

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6180, CVE-2016-6181, CVE-2016-6183, and CVE-2016-6184.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei honor_4c_firmware chm-ul00c00b535
huawei honor_4c_firmware chm-tl00hc00b556
huawei honor_4c_firmware chm-ul00c00b556
huawei honor_4c_firmware chm-tl00c01b556
huawei honor_4c_firmware chm-tl00c01_b535
huawei honor_4c_firmware chm-tl00hc00_b535
CVE-2016-6183 MEDIUM

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6180, CVE-2016-6181, CVE-2016-6182, and CVE-2016-6184.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei honor_4c_firmware chm-ul00c00b535
huawei honor_4c_firmware chm-tl00hc00b556
huawei honor_4c_firmware chm-ul00c00b556
huawei honor_4c_firmware chm-tl00c01b556
huawei honor_4c_firmware chm-tl00c01_b535
huawei honor_4c_firmware chm-tl00hc00_b535
CVE-2016-6184 MEDIUM

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6180, CVE-2016-6181, CVE-2016-6182, and CVE-2016-6183.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei honor_4c_firmware chm-ul00c00b535
huawei honor_4c_firmware chm-tl00hc00b556
huawei honor_4c_firmware chm-ul00c00b556
huawei honor_4c_firmware chm-tl00c01b556
huawei honor_4c_firmware chm-tl00c01_b535
huawei honor_4c_firmware chm-tl00hc00_b535
CVE-2016-6192 HIGH

Buffer overflow in the Wi-Fi driver in Huawei P8 smartphones with software before GRA-CL00C92B363 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6193.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei p8_smartphone_firmware *
CVE-2016-6193 HIGH

Buffer overflow in the Wi-Fi driver in Huawei P8 smartphones with software before GRA-CL00C92B363 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6192.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p8_smartphone_firmware *
CVE-2016-6206 HIGH

Huawei AR3200 routers with software before V200R007C00SPC600 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ar3200_firmware v200r006c00
huawei ar3200_firmware v200r005c31
huawei ar3200_firmware v200r006c16
huawei ar3200_firmware v200r006c13
huawei ar3200_firmware v200r005c32
huawei ar3200_firmware v200r002c00
huawei ar3200_firmware v200r003c05
huawei ar3200_firmware v200r006c12
huawei ar3200_firmware v200r006c17
huawei ar3200_firmware v200r002c05
huawei ar3200_firmware v200r006c11
huawei ar3200_firmware v200r005c00
huawei ar3200_firmware v200r002c02
huawei ar3200_firmware v200r003c00
huawei ar3200_firmware v200r001c01
huawei ar3200_firmware v200r001c00
huawei ar3200_firmware v200r005c20
huawei ar3200_firmware v200r002c01
huawei ar3200_firmware v200r006c15
huawei ar3200_firmware v200r006c10
huawei ar3200_firmware v200r005c30
huawei ar3200_firmware v200r005c10
huawei ar3200_firmware v200r005c21
huawei ar3200_firmware v200r003c01
CVE-2016-6518 MEDIUM

Memory leak in Huawei S9300, S5300, S5700, S6700, S7700, S9700, and S12700 devices allows remote attackers to cause a denial of service (memory consumption and restart) via a large number of malformed packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r002c00
huawei s9700_firmware v200r008c00
huawei s5300_firmware v200r001c00
huawei s6300_firmware v200r005c00
huawei s5700_firmware v200r002c00
huawei s7700_firmware v200r008c00
huawei s9700_firmware v200r005c00
huawei s5300_firmware v200r007c00
huawei s6300_firmware v200r003c00
huawei s9700_firmware v200r006c00
huawei s7700_firmware v200r006c00
huawei s5700_firmware v200r003c02
huawei s6300_firmware v200r008c00
huawei s6300_firmware v200r001c00
huawei s9300_firmware v200r008c00
huawei s5700_firmware v200r001c00
huawei s7700_firmware v200r001c00
huawei s6700_firmware v200r003c00
huawei s6700_firmware v200r008c00
huawei s6700_firmware v200r002c00
huawei s7700_firmware v200r002c00
huawei s6300_firmware v200r005c01
huawei s6700_firmware v200r001c01
huawei s9700_firmware v200r003c00
huawei s5300_firmware v200r002c00
huawei s5300_firmware v200r005c02
huawei s6700_firmware v200r001c00
huawei s9300_firmware v200r006c00
huawei s9300_firmware v200r003c00
huawei s7700_firmware v200r005c00
huawei s9700_firmware v200r001c01
huawei s5300_firmware v200r005c00
huawei s12700_firmware v200r005c00
huawei s12700_firmware v200r006c00
huawei s6300_firmware v200r002c00
huawei s5300_firmware v200r008c00
huawei s9300_firmware v200r001c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei s9700_firmware v200r001c00
huawei s5700_firmware v200r008c00
huawei s5300_firmware v200r006c00
huawei s5300_firmware v200r005c01
huawei s5700_firmware v200r005c00
huawei s7700_firmware v200r003c00
huawei s5300_firmware v200r003c00
huawei s6300_firmware v200r005c02
huawei s9300_firmware v200r005c00
huawei s5700_firmware v200r001c01
huawei s5700_firmware v200r003c00
CVE-2016-6669 HIGH

Buffer overflow in the Authentication, Authorization and Accounting (AAA) module in Huawei USG2100, USG2200, USG5100, and USG5500 unified security gateways with software before V300R001C10SPC600 allows remote authenticated RADIUS servers to execute arbitrary code by sending a crafted EAP packet.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei usg5100_firmware *
huawei usg2100_firmware *
huawei usg2200_firmware *
huawei usg5500_firmware *
CVE-2016-6670 MEDIUM

Huawei S7700, S9300, S9700, and S12700 devices with software before V200R008C00SPC500 use random numbers with insufficient entropy to generate self-signed certificates, which makes it easier for remote attackers to discover private keys by leveraging knowledge of a certificate.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r003c00
huawei s9700_firmware v200r005c00
huawei_firmware s12700 v200r005c00
huawei s9300_firmware v200r003c00
huawei s7700_firmware v200r005c00
huawei s7700_firmware v200r003c00
huawei s9300_firmware v200r005c00
CVE-2016-6824 MEDIUM

Huawei AC6003, AC6005, AC6605, and ACU2 access controllers with software before V200R006C10SPC200 allows remote authenticated users to cause a denial of service (device restart) via crafted CAPWAP packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ac6605_firmware *
huawei acu2_firmware *
huawei ac6003_firmware *
huawei ac6005_firmware *
huawei ac6605_firmware v200r006c00
CVE-2016-6825 MEDIUM

Huawei XH620 V3, XH622 V3, and XH628 V3 servers with software before V100R003C00SPC610, RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, and RH2288H V3 servers with software before V100R003C00SPC515 allow remote attackers to obtain passwords via a brute-force attack, related to "lack of authentication protection mechanisms."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-285,

Products Affected

Vendor Product Version
huawei xh628_v3_server_firmware v100r003c00
huawei rh2288h_v3_server_firmware v100r003c00
huawei xh620_v3_server_firmware v100r003c00
huawei rh2288_v3_server_firmware v100r003c00
huawei xh622_v3_server_firmware v100r003c00
huawei rh1288_v3_server_firmware v100r003c00
CVE-2016-6826 HIGH

Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service (application crash) via a crafted compressed email attachment.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei anyoffice_secureapp 2.5.0301.0190
huawei anyoffice_secureapp 2.5.0501.0190
CVE-2016-6827 MEDIUM

Huawei FusionCompute before V100R005C10CP7002 stores cleartext AES keys in a file, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei fusioncompute *
CVE-2016-6838 MEDIUM

Huawei X6800 and XH620 V3 servers with software before V100R003C00SPC606, RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, CH140 V3 and CH226 V3 servers with software before V100R001C00SPC122, CH220 V3 servers with software before V100R001C00SPC201, and CH121 V3 and CH222 V3 servers with software before V100R001C00SPC202 might allow remote attackers to decrypt encrypted data and consequently obtain sensitive information by leveraging selection of an insecure SSH encryption algorithm.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,CWE-310,

Products Affected

Vendor Product Version
huawei xh620_v3_server_firmware v100r003c00
huawei ch222_v3_server_firmware v100r001c00
huawei ch226_v3_server_firmware v100r001c00
huawei ch220_v3_server_firmware v100r001c00
huawei ch121_v3_server_firmware v100r001c00
huawei ch140_v3_server_firmware v100r001c00
huawei rh2288_v3_server_firmware v100r003c00
huawei x6800_v3_server_firmware v100r003c00
huawei rh1288_v3_server_firmware v100r003c00
CVE-2016-6839 MEDIUM

CRLF injection vulnerability in Huawei FusionAccess before V100R006C00 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-113,

Products Affected

Vendor Product Version
huawei fusionaccess v100r005c10
huawei fusionaccess v100r005c20
huawei fusionaccess v100r005c30
CVE-2016-6840 MEDIUM

Cross-site scripting (XSS) vulnerability in the management interface in Huawei OceanStor ISM before V200R001C04SPC200 allows remote attackers to inject arbitrary web script or HTML via the loginName parameter to cgi-bin/doLogin_CgiEntry and possibly other unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei oceanstor_ism v200r001c01
huawei oceanstor_ism v200r001c03
huawei oceanstor_ism v200r001c02
CVE-2016-6898 MEDIUM

XML external entity (XXE) vulnerability in the Hyper Management Module (HMM) in Huawei E9000 rack servers with software before V100R001C00SPC296 allows remote authenticated users to read arbitrary files or cause a denial of service (web service outage) via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei e9000_chassis *
CVE-2016-6899 MEDIUM

The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613, RH2288 V3 servers with software before V100R003C00SPC617, RH2288H V3 servers with software before V100R003C00SPC515, RH5885 V3 servers with software before V100R003C10SPC102, and XH620 V3, XH622 V3, and XH628 V3 servers with software before V100R003C00SPC610 might allow remote attackers to decrypt encrypted data and consequently obtain sensitive information by leveraging selection of an insecure SSL encryption algorithm.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,CWE-310,

Products Affected

Vendor Product Version
huawei xh628_v3_server_firmware v100r003c00
huawei rh2288h_v3_server_firmware v100r003c00
huawei xh620_v3_server_firmware v100r003c00
huawei rh2288_v3_server_firmware v100r003c00
huawei xh622_v3_server_firmware v100r003c00
huawei rh5885_v3_server_firmware v100r003c01
huawei rh1288_v3_server_firmware v100r003c00
CVE-2016-6900 LOW

The Intelligent Baseboard Management Controller (iBMC) in Huawei RH1288 V3 servers with software before V100R003C00SPC613; RH2288 V3 servers with software before V100R003C00SPC617; RH2288H V3 servers with software before V100R003C00SPC515; RH5885 V3 servers with software before V100R003C10SPC102; and XH620 V3, XH622 V3, and XH628 V3 servers with software before V100R003C00SPC610 allows local users to cause a denial of service (iBMC resource consumption) via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei xh628_v3_server_firmware v100r003c00
huawei rh2288h_v3_server_firmware v100r003c00
huawei xh620_v3_server_firmware v100r003c00
huawei rh2288_v3_server_firmware v100r003c00
huawei xh622_v3_server_firmware v100r003c00
huawei rh5885_v3_server_firmware v100r003c01
huawei rh1288_v3_server_firmware v100r003c00
CVE-2016-6901 MEDIUM

Format string vulnerability in Huawei AR100, AR120, AR150, AR200, AR500, AR550, AR1200, AR2200, AR2500, AR3200, and AR3600 routers with software before V200R007C00SPC900 and NetEngine 16EX routers with software before V200R007C00SPC900 allows remote authenticated users to cause a denial of service via format string specifiers in vectors involving partial commands.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ar_firmware v200r005
huawei ar_firmware v200r006
huawei netengine_16ex_firmware v200r005
huawei ar_firmware v200r007c00
huawei netengine_16ex_firmware v200r006
huawei netengine_16ex_firmware v200r007c00
CVE-2016-7107 MEDIUM

Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote attackers to reset arbitrary user passwords and consequently affect system data integrity via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei uma *
CVE-2016-7108 MEDIUM

Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 SPH206 allows remote authenticated users to obtain the MD5 hashes of arbitrary user passwords via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei uma *
CVE-2016-7109 HIGH

Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7110.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei uma *
CVE-2016-7110 HIGH

Huawei Unified Maintenance Audit (UMA) before V200R001C00SPC200 allows remote attackers to execute arbitrary commands via "special characters," a different vulnerability than CVE-2016-7109.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei uma *
CVE-2016-8271 MEDIUM

Huawei eSpace IAD V300R002C01SPC100 and earlier versions have an information leak vulnerability; an attacker can check and download the fault information by accessing a special URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei espace_iad_firmware *
CVE-2016-8272 LOW

Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user's proxy password, causing information leaks.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei hisuite 4.0.5.300_ove
CVE-2016-8273 MEDIUM

Huawei PC client software HiSuite 4.0.5.300_OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can launch an MITM attack to interrupt or replace the downloaded software package and further compromise the PC.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-284,

Products Affected

Vendor Product Version
huawei hisuite 4.0.5.300_ove
CVE-2016-8274 HIGH

Huawei PC client software HiSuite 4.0.5.300_OVE has a dynamic link library (DLL) hijack vulnerability; an attacker can make the system load malicious DLL files to execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei hisuite 4.0.5.300_ove
CVE-2016-8275 LOW

Huawei AnyOffice V200R006C00 could allow an authenticated, remote attacker to cause the software to deny services by uploading an XML bomb.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei anyoffice v200r006c00
CVE-2016-8276 HIGH

Buffer overflow in the Point-to-Point Protocol over Ethernet (PPPoE) module in Huawei USG2100, USG2200, USG5100, and USG5500 unified security gateways with software before V300R001C10SPC600, when CHAP authentication is configured on the server, allows remote attackers to cause a denial of service (server restart) or execute arbitrary code via crafted packets sent during authentication.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei usg2200 v300r001c00
huawei usg5100 v300r001c00
huawei usg2100 v300r001c10
huawei usg2100 v300r001c00
huawei usg5500 v300r001c00
huawei usg5500 v300r001c10
huawei usg2200 v300r001c10
huawei usg5100 v300r001c10
CVE-2016-8277 MEDIUM

Huawei USG9520, USG9560, and USG9580 unified security gateways with software before V300R001C01SPCa00 allow remote authenticated users to cause a denial of service (device restart) via an unspecified command parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei usg9560 v300r001c01
huawei usg9520 v300r001c01
huawei usg9580 v300r001c01
CVE-2016-8278 HIGH

Huawei USG9520, USG9560, and USG9580 unified security gateways with software before V300R001C01SPCa00 allow remote attackers to cause a denial of service (device restart) via an unspecified URL.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei usg9560 v300r001c01
huawei usg9520 v300r001c01
huawei usg9580 v300r001c01
CVE-2016-8279 HIGH

The video driver in Huawei Mate S smartphones with software CRR-TL00 before CRR-TL00C01B362, CRR-UL20 before CRR-UL20C00B362, CRR-CL00 before CRR-CL00C92B362, and CRR-CL20 before CRR-CL20C92B362; P8 smartphones with software GRA-TL00 before GRA-TL00C01B366, GRA-UL00 before GRA-UL00C00B366, GRA-UL10 before GRA-UL10C00B366, and GRA-CL00 before GRA-CL00C92B366; and Honor 6 and Honor 6 Plus smartphones with software before 6.9.16 allows attackers to cause a denial of service (device reboot) via a crafted application.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei mate_s_firmware crr-ul20
huawei p8_firmware gra-ul10
huawei mate_s_firmware crr-cl00
huawei p8_firmware gra-cl00
huawei mate_s_firmware crr-tl00
huawei honor6_firmware *
huawei p8_firmware gra-ul00
huawei p8_firmware gra-tl00
huawei mate_s_firmware crr-cl20
CVE-2016-8280 MEDIUM

Directory traversal vulnerability in Huawei eSight before V300R003C20SPC005 allows remote authenticated users to read arbitrary files via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei esight v300r002c00
huawei esight v300r003c20
huawei esight v300r003c10
CVE-2016-8754 MEDIUM

Huawei OceanStor 5600 V3 V300R003C00 has a hardcoded SSH key vulnerability; the hardcoded keys are used to encrypt communication data and authenticate different nodes of the devices. An attacker may obtain the hardcoded keys and log in to such a device through SSH.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-798,

Products Affected

Vendor Product Version
huawei oceanstor_5600_v3_firmware v300r003c00
CVE-2016-8756 HIGH

ION memory management module in Huawei Mate 8 phones with software NXT-AL10C00B197 and earlier versions, NXT-DL10C00B197 and earlier versions, NXT-TL10C00B197 and earlier versions, NXT-CL10C00B197 and earlier versions allows attackers to cause a denial of service (restart).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_8_firmware nxt-tl10c00b197
huawei mate_8_firmware nxt-al10c00b197
huawei mate_8_firmware nxt-dl10c00b197
huawei mate_8_firmware nxt-cl10c00b197
CVE-2016-8757 MEDIUM

ION memory management module in Huawei P9 phones with software EVA-AL10C00B192 and earlier versions, EVA-DL10C00B192 and earlier versions, EVA-TL10C00B192 and earlier versions, EVA-CL10C00B192 and earlier versions allows attackers to obtain sensitive information from uninitialized memory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei p9_firmware *
CVE-2016-8758 HIGH

ION memory management module in Huawei Mate8 phones with software NXT-AL10C00B561 and earlier versions, NXT-CL10C00B561 and earlier versions, NXT-DL10C00B561 and earlier versions, NXT-TL10C00B561 and earlier versions allows attackers to cause a denial of service (restart).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_8_firmware nxt-cl10c00b561
huawei mate_8_firmware nxt-dl10c00b561
huawei mate_8_firmware nxt-tl10c00b561
huawei mate_8_firmware nxt-al10c00b561
CVE-2016-8759 HIGH

Video driver in Huawei P9 phones with software versions before EVA-AL10C00B192 and Huawei Honor 6 phones with software versions before H60-L02_6.10.1 has a stack overflow vulnerability, which allows attackers to crash the system or escalate user privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6_firmware -
huawei p9_firmware -
huawei p9_plus_firmware -
CVE-2016-8760 HIGH

Touchscreen driver in Huawei P9 phones with software versions before EVA-AL10C00B192 and Huawei Honor 6 phones with software versions before H60-L02_6.10.1 has a heap overflow vulnerability, which allows attackers to crash the system or escalate user privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6_firmware -
huawei p9_firmware -
huawei p9_plus_firmware -
CVE-2016-8761 HIGH

Video driver in Huawei P9 phones with software versions before EVA-AL10C00B192 and Huawei Honor 6 phones with software versions before H60-L02_6.10.1 has a stack overflow vulnerability, which allows attackers to crash the system or escalate user privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6_firmware -
huawei p9_firmware -
huawei p9_plus_firmware -
CVE-2016-8762 LOW

The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to cause the system to restart.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p9_firmware -
huawei p9_lite_firmware *
huawei p8_lite_firmware *
CVE-2016-8763 HIGH

The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an improper resource release vulnerability, which allows attackers to cause a system restart or privilege elevation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-664,

Products Affected

Vendor Product Version
huawei p9_firmware -
huawei p9_lite_firmware *
huawei p8_lite_firmware *
CVE-2016-8764 MEDIUM

The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to read and write user-mode memory data anywhere in the TrustZone driver.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p9_firmware -
huawei p9_lite_firmware *
huawei p8_lite_firmware *
CVE-2016-8768 HIGH

Huawei Honor 6, Honor 6 Plus, Honor 7 phones with software versions earlier than 6.9.16 could allow attackers to disable the PXN defense mechanism by invoking related drive code to crash the system or escalate privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-254,

Products Affected

Vendor Product Version
huawei honor_6_plus_firmware -
huawei honor_6_firmware -
huawei honor_7_firmware -
CVE-2016-8769 HIGH

Huawei UTPS earlier than UTPS-V200R003B015D16SPC00C983 has an unquoted service path vulnerability which can lead to the truncation of UTPS service query paths. An attacker may put an executable file in the search path of the affected service and obtain elevated privileges after the executable file is executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei utps_firmware *
CVE-2016-8773 MEDIUM

Huawei S5300 with software V200R003C00, V200R007C00, V200R008C00, V200R009C00; S5700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C03, V200R007C00, V200R008C00, V200R009C00; S6300 with software V200R003C00, V200R005C00, V200R008C00, V200R009C00; S6700 with software V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R008C00, V200R009C00; S7700 with software V200R007C00, V200R008C00, V200R009C00; S9300 with software V200R007C00, V200R008C00, V200R009C00; S9700 with software V200R007C00, V200R008C00, V200R009C00; and S12700 with software V200R007C00, V200R007C01, V200R008C00, V200R009C00 allow the attacker to cause a denial of service condition by sending malformed MPLS packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s6300_firmware v200r005c00
huawei s5700_firmware v200r002c00
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r008c00
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r009c00
huawei s5300_firmware v200r007c00
huawei s6300_firmware v200r003c00
huawei s6700_firmware v200r005c00
huawei s6300_firmware v200r009c00
huawei s6300_firmware v200r008c00
huawei s5700_firmware v200r007c00
huawei s5300_firmware v200r008c00
huawei s6700_firmware v200r009c00
huawei s9300_firmware v200r008c00
huawei s7700_firmware v200r009c00
huawei s12700_firmware v200r008c00
huawei s5300_firmware v200r009c00
huawei s5700_firmware v200r001c00
huawei s9300_firmware v200r007c00
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r003c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s6700_firmware v200r002c00
huawei s5700_firmware v200r005c00
huawei s6700_firmware v200r001c01
huawei s9300_firmware v200r009c00
huawei s5300_firmware v200r003c00
huawei s12700_firmware v200r007c01
huawei s12700_firmware v200r007c00
huawei s5700_firmware v200r005c03
huawei s6700_firmware v200r001c00
huawei s5700_firmware v200r003c00
huawei s6700_firmware v200r007c00
CVE-2016-8774 HIGH

The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366; and P9 phones with software Versions before EVA-AL10C00B190, Versions before EVA-DL10C00B190, Versions before EVA-TL10C00B190, Versions before EVA-CL10C00B190 allows attackers to get root privilege or crash the system or execute arbitrary code, related to a buffer overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_s_firmware -
huawei p9_firmware -
huawei mate_8_firmware -
huawei p8_firmware -
CVE-2016-8775 HIGH

Touch Panel (TP) driver in Huawei NEM phones with software Versions before NEM-AL10C00B130, Versions before NEM-UL10C17B160, Versions before NEM-UL10C00B160, Versions before NEM-TL00C01B160 allows attackers to get root privilege or crash the system or execute arbitrary code, related to a buffer overflow.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei nem-l22_firmware -
huawei nem-l21_firmware -
huawei nem-al10_firmware -
huawei nem-l51_firmware -
CVE-2016-8776 LOW

Huawei P9 phones with software EVA-AL10C00,EVA-CL10C00,EVA-DL10C00,EVA-TL10C00 and P9 Lite phones with software VNS-L21C185 allow attackers to bypass the factory reset protection (FRP) to enter some functional modules without authorization and perform operations to update the Google account.

CVSS 2.0

Severity: LOW

Problem Type: CWE-285,

Products Affected

Vendor Product Version
huawei p9_firmware eva-cl10c00
huawei p9_firmware eva-al10c00
huawei p9_firmware eva-dl10c00
huawei p9_lite_firmware vns-l21c185
huawei p9_firmware eva-tl10c00
CVE-2016-8779 MEDIUM

Huawei FusionAccess with software V100R005C10 and V100R005C20 could allow remote attackers with specific permission to inject a Lightweight Directory Access Protocol (LDAP) operation command into a specific input variable to obtain sensitive information from the database.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei fusionaccess v100r005c10
huawei fusionaccess v100r005c20
CVE-2016-8780 MEDIUM

Huawei CloudEngine 6800 V100R006C00, CloudEngine 7800 V100R006C00, CloudEngine 8800 V100R006C00, and CloudEngine 12800 V100R006C00 allow remote attackers with specific permission to store massive files to exhaust the shared storage space, leading to a DoS condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei cloudengine_7800_firmware v100r006c00
huawei cloudengine_12800_firmware v100r006c00
huawei cloudengine_6800_firmware v100r006c00
huawei cloudengine_8800_firmware v100r006c00
CVE-2016-8781 MEDIUM

Huawei Secospace USG6300 with software V500R001C20 and V500R001C20SPC200PWE, Secospace USG6500 with software V500R001C20, Secospace USG6600 with software V500R001C20 and V500R001C20SPC200PWE allow remote attackers with specific permission to log in to a device and deliver a large number of unspecified commands to exhaust memory, causing a DoS condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c20
CVE-2016-8782 MEDIUM

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol (LDP) packets to the devices repeatedly. Due to improper validation of some specific fields of the packet, the LDP processing module does not release the memory, resulting in memory leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v100r005c10
huawei cloudengine_12800_firmware v100r005c00
huawei cloudengine_12800_firmware v100r006c00
huawei cloudengine_12800_firmware v100r003c10
huawei cloudengine_12800_firmware v100r003c00
CVE-2016-8783 HIGH

Touchscreen drive in Huawei H60 (Honor 6) Versions earlier than H60-L02_6.12.16 and P9 Plus Versions earlier than VIE-AL10BC00B356 has a stack overflow vulnerabilities. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to touchscreen drive to crash the system or escalate privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6_firmware *
huawei p9_plus_firmware *
CVE-2016-8784 LOW

Huawei CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Label Distribution Protocol (LDP) packets to the devices. When the values of some parameters in the packet are abnormal, the LDP processing module does not release the memory to handle the packet, resulting in memory leak.

CVSS 2.0

Severity: LOW

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v100r005c10
huawei cloudengine_12800_firmware v100r005c00
huawei cloudengine_12800_firmware v100r006c00
huawei cloudengine_12800_firmware v100r003c10
huawei cloudengine_12800_firmware v100r003c00
CVE-2016-8785 MEDIUM

Huawei S12700 V200R007C00, V200R008C00, S5700 V200R007C00, S7700 V200R002C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, S9700 V200R007C00 have an input validation vulnerability. Due to the lack of input validation, an attacker may craft a malformed packet and send it to the device using VRP, causing the device to display additional memory data and possibly leading to sensitive information leakage.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s12700_firmware v200r007c00
huawei s5700_firmware v200r007c00
huawei s7700_firmware v200r005c00
huawei s7700_firmware v200r002c00
huawei s12700_firmware v200r008c00
huawei s7700_firmware v200r006c00
CVE-2016-8786 HIGH

Huawei S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, S5700 V200R006C00, V200R007C00, V200R008C00, S6700 V200R008C00, S7700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, S9700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00 have a denial of service (DoS) vulnerability. Due to the lack of input validation, a remote attacker may craft a malformed Resource Reservation Protocol (RSVP) packet and send it to the device, causing a few buffer overflows and occasional device restart.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r002c00
huawei s9700_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r008c00
huawei s9700_firmware v200r001c00
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s9700_firmware v200r005c00
huawei s7700_firmware v200r005c00
huawei s7700_firmware v200r002c00
huawei s9700_firmware v200r006c00
huawei s7700_firmware v200r003c00
huawei s7700_firmware v200r006c00
huawei s9700_firmware v200r003c00
huawei s12700_firmware v200r005c00
huawei s12700_firmware v200r006c00
huawei s12700_firmware v200r007c00
huawei s5700_firmware v200r007c00
huawei s12700_firmware v200r008c00
huawei s7700_firmware v200r001c00
CVE-2016-8789 MEDIUM

Huawei eSpace Integrated Access Device (IAD) with software V300R001C03, V300R001C04, V300R001C06, V300R001C20, and V300R001C07 allows an attacker to trick a user into clicking a URL containing malicious scripts to obtain user information or hijack the session, aka XSS.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei espace_integrated_access_device_firmware v300r001c04
huawei espace_integrated_access_device_firmware v300r001c07
huawei espace_integrated_access_device_firmware v300r001c06
huawei espace_integrated_access_device_firmware v300r001c03
huawei espace_integrated_access_device_firmware v300r001c20
CVE-2016-8790 MEDIUM

Huawei CloudEngine 5800 with software before V200R001C00SPC700, CloudEngine 6800 with software before V200R001C00SPC700, CloudEngine 7800 with software before V200R001C00SPC700, CloudEngine 8800 with software before V200R001C00SPC700, CloudEngine 12800 with software before V200R001C00SPC700 could allow the attacker to exploit a buffer overflow vulnerability by sending crafted packets to the affected system to cause a main control board reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v100r005c10
huawei cloudengine_6800_firmware v100r005c10
huawei cloudengine_7800_firmware v100r003c10
huawei cloudengine_12800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r005c00
huawei cloudengine_7800_firmware v100r006c00
huawei cloudengine_5800_firmware v100r006c00
huawei cloudengine_12800_firmware v100r006c00
huawei cloudengine_7800_firmware v100r005c00
huawei cloudengine_5800_firmware v100r003c10
huawei cloudengine_5800_firmware v100r005c10
huawei cloudengine_5800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r003c10
huawei cloudengine_12800_firmware v100r003c10
huawei cloudengine_6800_firmware v100r006c00
huawei cloudengine_8800_firmware v100r006c00
huawei cloudengine_7800_firmware v100r005c10
CVE-2016-8791 MEDIUM

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; and P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366 allow attackers with graphic or Camera privilege to crash the system or escalate privilege.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei mate_s_firmware -
huawei mate_8_firmware -
huawei p8_firmware -
CVE-2016-8792 MEDIUM

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; and P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366 allow attackers with graphic or Camera privilege to crash the system or escalate privilege.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei mate_s_firmware -
huawei mate_8_firmware -
huawei p8_firmware -
CVE-2016-8793 MEDIUM

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; and P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366 allow attackers with graphic or Camera privilege to crash the system or escalate privilege.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei mate_s_firmware -
huawei mate_8_firmware -
huawei p8_firmware -
CVE-2016-8794 MEDIUM

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions before NXT-DL00C17B386, Versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; and P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366 allow attackers with graphic or Camera privilege to crash the system or escalate privilege.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei mate_s_firmware -
huawei mate_8_firmware -
huawei p8_firmware -
CVE-2016-8795 HIGH

Huawei CloudEngine 12800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 5800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 6800 with software V100R002C00, V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 7800 with software V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00; CloudEngine 8800 with software V100R006C00; and Secospace USG6600 with software V500R001C00 allow remote unauthenticated attackers to craft specific IPFPM packets to trigger an integer overflow and cause the device to reset.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei cloudengine_6800_firmware v100r005c10
huawei cloudengine_7800_firmware v100r003c10
huawei cloudengine_7800_firmware v100r006c00
huawei cloudengine_7800_firmware v100r003c00
huawei cloudengine_12800_firmware v100r006c00
huawei cloudengine_12800_firmware v100r002c00
huawei cloudengine_5800_firmware v100r003c10
huawei cloudengine_12800_firmware v100r003c00
huawei cloudengine_5800_firmware v100r005c10
huawei cloudengine_6800_firmware v100r002c00
huawei cloudengine_5800_firmware v100r002c00
huawei cloudengine_6800_firmware v100r006c00
huawei cloudengine_7800_firmware v100r005c10
huawei cloudengine_5800_firmware v100r003c00
huawei cloudengine_12800_firmware v100r005c10
huawei cloudengine_12800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r005c00
huawei cloudengine_5800_firmware v100r006c00
huawei secospace_usg6600_firmware v500r001c00
huawei cloudengine_7800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r003c00
huawei cloudengine_5800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r003c10
huawei cloudengine_12800_firmware v100r003c10
huawei cloudengine_8800_firmware v100r006c00
CVE-2016-8796 HIGH

Huawei USG9520 V300R001C01, USG9560 V300R001C01, and USG9580 V300R001C01 allow unauthenticated attackers to send abnormal DHCP request packets to the affected products to trigger a DoS condition.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei usg9580_firmware v300r001c01
huawei usg9520_firmware v300r001c01
huawei usg9560_firmware v300r001c01
CVE-2016-8797 MEDIUM

Huawei AR3200 with software V200R007C00, V200R005C32, V200R005C20; S12700 with software V200R008C00, V200R007C00; S5300 with software V200R008C00, V200R007C00, V200R006C00; S5700 with software V200R008C00, V200R007C00, V200R006C00; S6300 with software V200R008C00, V200R007C00; S6700 with software V200R008C00, V200R007C00; S7700 with software V200R008C00, V200R007C00, V200R006C00; S9300 with software V200R008C00, V200R007C00, V200R006C00; and S9700 with software V200R008C00, V200R007C00, V200R006C00 allow remote attackers to send abnormal Multiprotocol Label Switching (MPLS) packets to cause memory exhaustion.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r008c00
huawei ar3200_firmware v200r005c32
huawei s5300_firmware v200r007c00
huawei s9300_firmware v200r006c00
huawei s9700_firmware v200r006c00
huawei s7700_firmware v200r006c00
huawei s6300_firmware v200r008c00
huawei s5700_firmware v200r007c00
huawei s5300_firmware v200r008c00
huawei s9300_firmware v200r008c00
huawei s12700_firmware v200r008c00
huawei s9300_firmware v200r007c00
huawei s5700_firmware v200r006c00
huawei s6300_firmware v200r007c00
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s5300_firmware v200r006c00
huawei ar3200_firmware v200r005c20
huawei ar3200_firmware v200r007c00
huawei s12700_firmware v200r007c00
huawei s6700_firmware v200r007c00
CVE-2016-8798 HIGH

Huawei USG5500 with software V300R001C00 and V300R001C00 allows attackers to bypass the anti-DDoS module of the USGs to cause a denial of service condition on the backend server.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-284,

Products Affected

Vendor Product Version
huawei usg5500_firmware v300r001c00
huawei usg5500_firmware v300r001c10
CVE-2016-8801 HIGH

Huawei OceanStor 5600 V3 with V300R003C00C10 and earlier versions allows attackers with administrator privilege to inject a command into a specific command's parameters, and run this injected command with root privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei oceanstor_5600_v3_firmware *
CVE-2016-8802 MEDIUM

The security policy processing module in Huawei Secospace USG6300 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6500 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200; Secospace USG6600 with software V500R001C20SPC100, V500R001C20SPC101, V500R001C20SPC200 allows authenticated attackers to setup a specific security policy into the devices, causing a buffer overflow and crashing the system.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6600_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c20spc101
CVE-2016-8803 MEDIUM

The maintenance module in Huawei FusionStorage V100R003C30U1 allows attackers to create documents according to special rules to obtain the OS root privilege of FusionStorage.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
huawei fusionstorage v100r003c30u1
CVE-2017-14491 HIGH

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
debian debian_linux 9.0
suse linux_enterprise_point_of_sale 11
opensuse leap 42.2
siemens scalance_m-800_firmware *
synology diskstation_manager 6.0
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_desktop 6.0
arista eos *
suse linux_enterprise_server 11
nvidia geforce_experience *
canonical ubuntu_linux 17.04
debian debian_linux 7.0
nvidia linux_for_tegra *
synology diskstation_manager 5.2
debian debian_linux 8.0
synology router_manager 1.1
debian debian_linux 7.1
canonical ubuntu_linux 12.04
siemens ruggedcom_rm1224_firmware *
canonical ubuntu_linux 16.04
suse linux_enterprise_server 12
siemens scalance_w1750d_firmware *
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server 6.0
opensuse leap 42.3
siemens scalance_s615_firmware *
arubanetworks arubaos *
redhat enterprise_linux_server 7.0
synology diskstation_manager 6.1
redhat enterprise_linux_workstation 7.0
thekelleys dnsmasq *
huawei honor_v9_play_firmware *
canonical ubuntu_linux 14.04
suse linux_enterprise_debuginfo 11
CVE-2017-15307 LOW

Huawei Honor 8 smartphone with software versions earlier than FRD-L04C567B389 and earlier than FRD-L14C567B389 have a permission control vulnerability due to improper authorization configuration on specific device information.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_8_firmware *
CVE-2017-15308 MEDIUM

Huawei iReader app before 8.0.2.301 has an input validation vulnerability due to insufficient validation on the URL used for loading network data. An attacker can control app access and load malicious websites created by the attacker, and the code in webpages would be loaded and run.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ireader *
CVE-2017-15309 MEDIUM

Huawei iReader app before 8.0.2.301 has a path traversal vulnerability due to insufficient validation on file storage paths. An attacker can exploit this vulnerability to store downloaded malicious files in an arbitrary directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei ireader *
CVE-2017-15310 MEDIUM

Huawei iReader app before 8.0.2.301 has an arbitrary file deletion vulnerability due to the lack of input validation. An attacker can exploit this vulnerability to delete specific files from the SD card.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ireader *
CVE-2017-15311 MEDIUM

The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120(SP2C00), before BLA-AL00 8.0.0.120(SP2C00), before MHA-AL00B 8.0.0.334(C00), and before LON-AL00B 8.0.0.334(C00) have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker could exploit this vulnerability to perform a denial of service attack or remote code execution in baseband module.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei mate_9_pro_firmware *
huawei mate_10_pro_firmware *
huawei mate_10_firmware *
CVE-2017-15312 LOW

Huawei SmartCare V200R003C10 has a stored XSS (cross-site scripting) vulnerability in the dashboard module. A remote authenticated attacker could exploit this vulnerability to inject malicious scripts in the affected device.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei smartcare v200r003c10
CVE-2017-15313 MEDIUM

Huawei SmartCare V200R003C10 has a CSV injection vulnerability. An remote authenticated attacker could inject malicious CSV expression to the affected device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
huawei smartcare v200r003c10
CVE-2017-15314 LOW

Huawei DP300 V500R002C00, RP200 V500R002C00SPC200, V600R006C00, TE30 V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, TE40 V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, TE50 V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a memory leak vulnerability due to memory don't be released when the XML parser process some node fail. An attacker could exploit it to cause memory leak, which may further lead to system exceptions.

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10spc600
huawei te30_firmware v500r002c00spc700
huawei te50_firmware v500r002c00spcb00
huawei te40_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc500
huawei te50_firmware v600r006c00
huawei te50_firmware v500r002c00spc600
huawei te30_firmware v500r002c00spc600
huawei te60_firmware v100r001c10
huawei te30_firmware v100r001c10spc300
huawei rp200_firmware v600r006c00
huawei te30_firmware v500r002c00spc500
huawei te40_firmware v500r002c00spc700
huawei te40_firmware v500r002c00spcb00
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei rp200_firmware v500r002c00spc200
huawei te30_firmware v500r002c00spc200
huawei te40_firmware v500r002c00spc900
huawei te40_firmware v600r006c00
huawei te30_firmware v100r001c10spc700
huawei te30_firmware v500r002c00spc900
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te30_firmware v500r002c00spcb00
huawei te50_firmware v500r002c00spc700
CVE-2017-15315 MEDIUM

Patch module of Huawei NIP6300 V500R001C20SPC100, V500R001C20SPC200, NIP6600 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6300 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6500 V500R001C20SPC100, V500R001C20SPC200 has a memory leak vulnerability. An authenticated attacker could execute special commands many times, the memory leaking happened, which would cause the device to reset finally.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei secospace_usg6300_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20spc100
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c20spc100
huawei nip6600_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20spc200
huawei nip6300_firmware v500r001c20spc200
huawei nip6300_firmware v500r001c20spc100
CVE-2017-15316 HIGH

The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B 8.0.0.334(C00) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can call special API, which triggers double free and causes a system crash or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei mate_9_pro_firmware *
CVE-2017-15317 HIGH

AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30; AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30; AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30; AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30; AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30; AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30; AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30; AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30; SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30; SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30; SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30 have an input validation vulnerability in Huawei multiple products. Due to the insufficient input validation, an unauthenticated, remote attacker may craft a malformed Stream Control Transmission Protocol (SCTP) packet and send it to the device, causing the device to read out of bounds and restart.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei srg1300_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar510_firmware v200r006c12
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei ar160_firmware v200r007c01
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar150_firmware v200r008c20
huawei ar200-s_firmware v200r008c30
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar3200_firmware v200r008c10
huawei ar510_firmware v200r006c13
huawei ar150_firmware v200r007c01
huawei ar1200-s_firmware v200r007c00
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei ar510_firmware v200r006c17
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei ar200_firmware v200r008c20
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar510_firmware v200r008c20
huawei ar160_firmware v200r007c02
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei srg3300_firmware v200r008c30
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar510_firmware v200r008c30
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r008c20
huawei srg3300_firmware v200r007c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar510_firmware v200r006c10
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200_firmware v200r008c20
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei ar510_firmware v200r006c16
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar200_firmware v200r007c01
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar2200_firmware v200r007c00
huawei ar1200_firmware v200r008c30
huawei srg1300_firmware v200r007c00
huawei ar120-s_firmware v200r008c20
CVE-2017-15318 HIGH

RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-15319 HIGH

RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-15320 HIGH

RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-15321 MEDIUM

Huawei FusionSphere OpenStack V100R006C000SPC102 (NFV) has an information leak vulnerability due to the use of a low version transmission protocol by default. An attacker could intercept packets transferred by a target device. Successful exploit could cause an information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c000spc102_(nfv)
CVE-2017-15322 LOW

Some Huawei smartphones with software of BGO-L03C158B003CUSTC158D001 and BGO-L03C331B009CUSTC331D001 have a DoS vulnerability due to insufficient input validation. An attacker could exploit this vulnerability by sending specially crafted NFC messages to the target device. Successful exploit could make a service crash.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei baggio-l03a_firmware bgo-l03c331b009custc331d001
huawei baggio-l03a_firmware bgo-l03c158b003custc158d001
CVE-2017-15323 MEDIUM

Huawei DP300 V500R002C00, NIP6600 V500R001C00, V500R001C20, V500R001C30, Secospace USG6500 V500R001C00, V500R001C20, V500R001C30, TE60 V100R001C01, V100R001C10, V100R003C00, V500R002C00, V600R006C00, TP3106 V100R001C06, V100R002C00, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eCNS210_TD V100R004C10, eSpace U1981 V200R003C30 have a DoS vulnerability caused by memory exhaustion in some Huawei products. For lacking of adequate input validation, attackers can craft and send some malformed messages to the target device to exhaust the memory of the device and cause a Denial of Service (DoS).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei secospace_usg6500_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei tp3106_firmware v100r002c00
huawei secospace_usg6500_firmware v500r001c30
huawei te60_firmware v100r001c01
huawei te60_firmware v100r003c00
huawei viewpoint_9030_firmware v100r011c03
huawei vp9660_firmware v500r002c10
huawei te60_firmware v600r006c00
huawei ecns210_td_firmware v100r004c10
huawei vp9660_firmware v500r002c00
huawei te60_firmware v100r001c10
huawei vp9660_firmware v200r001c30
huawei viewpoint_9030_firmware v100r011c02
huawei nip6600_firmware v500r001c20
huawei espace_u1981_firmware v200r003c30
huawei tp3106_firmware v100r001c06
huawei vp9660_firmware v200r001c02
huawei viewpoint_8660_firmware v100r008c03
CVE-2017-15324 HIGH

Huawei S5700 and S6700 with software of V200R005C00 have a DoS vulnerability due to insufficient validation of the Network Quality Analysis (NQA) packets. A remote attacker could exploit this vulnerability by sending malformed NQA packets to the target device. Successful exploitation could make the device restart.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s5700_firmware v200r005c00
huawei s6700_firmware v200r005c00
CVE-2017-15325 HIGH

The Bdat driver of Prague smart phones with software versions earlier than Prague-AL00AC00B211, versions earlier than Prague-AL00BC00B211, versions earlier than Prague-AL00CC00B211, versions earlier than Prague-TL00AC01B211, versions earlier than Prague-TL10AC01B211 has integer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP and execute it as a specific privilege; the APP can then send a specific parameter to the driver of the smart phone, causing arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei prague-al00b_firmware *
huawei prague-tl00a_firmware *
huawei prague-al00a_firmware *
huawei prague-al00c_firmware *
huawei prague-tl10a_firmware *
CVE-2017-15326 MEDIUM

DBS3900 TDD LTE V100R003C00, V100R004C10 have a weak encryption algorithm security vulnerability. DBS3900 TDD LTE supports SSL/TLS protocol negotiation using insecure encryption algorithms. If an insecure encryption algorithm is negotiated in the communication, an unauthenticated remote attacker can exploit this vulnerability to crack the encrypted data and cause information leakage.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei dbs3900_tdd_lte_firmware v100r003c00
huawei dbs3900_tdd_lte_firmware v100r004c10
CVE-2017-15327 MEDIUM

S12700 V200R005C00, V200R006C00, V200R006C01, V200R007C00, V200R007C01, V200R007C20, V200R008C00, V200R008C06, V200R009C00, V200R010C00, S7700 V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R006C01, V200R007C00, V200R007C01, V200R008C00, V200R008C06, V200R009C00, V200R010C00, S9700 V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R006C01, V200R007C00, V200R007C01, V200R008C00, V200R009C00, V200R010C00 have an improper authorization vulnerability on Huawei switch products. The system incorrectly performs an authorization check when a normal user attempts to access certain information which is supposed to be accessed only by authenticated user. Successful exploit could cause information disclosure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r002c00
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s9700_firmware v200r010c00
huawei s9700_firmware v200r007c00
huawei s12700_firmware v200r007c20
huawei s7700_firmware v200r008c00
huawei s9700_firmware v200r007c01
huawei s9700_firmware v200r005c00
huawei s9700_firmware v200r009c00
huawei s7700_firmware v200r005c00
huawei s9700_firmware v200r006c00
huawei s7700_firmware v200r006c00
huawei s9700_firmware v200r001c01
huawei s12700_firmware v200r005c00
huawei s7700_firmware v200r008c06
huawei s12700_firmware v200r006c00
huawei s7700_firmware v200r007c01
huawei s7700_firmware v200r009c00
huawei s12700_firmware v200r008c00
huawei s7700_firmware v200r001c00
huawei s12700_firmware v200r008c06
huawei s9700_firmware v200r001c00
huawei s7700_firmware v200r007c00
huawei s7700_firmware v200r002c00
huawei s12700_firmware v200r010c00
huawei s7700_firmware v200r003c00
huawei s7700_firmware v200r001c01
huawei s9700_firmware v200r003c00
huawei s9700_firmware v200r006c01
huawei s12700_firmware v200r007c01
huawei s12700_firmware v200r007c00
huawei s7700_firmware v200r010c00
huawei s12700_firmware v200r006c01
huawei s7700_firmware v200r006c01
CVE-2017-15328 MEDIUM

Huawei HG8245H version earlier than V300R018C00SPC110 has an authentication bypass vulnerability. An attacker can access a specific URL of the affect product. Due to improper verification of the privilege, successful exploitation may cause information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei hg8245h_firmware *
CVE-2017-15329 MEDIUM

Huawei UMA V200R001C00 has a SQL injection vulnerability in the operation and maintenance module. An attacker logs in to the system as a common user and sends crafted HTTP requests that contain malicious SQL statements to the affected system. Due to a lack of input validation on HTTP requests that contain user-supplied input, successful exploitation may allow the attacker to execute arbitrary SQL queries.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
huawei uma_firmware v200r001c00
CVE-2017-15330 HIGH

The Flp Driver in some Huawei smartphones of the software Vicky-AL00AC00B124D, Vicky-AL00AC00B157D, Vicky-AL00AC00B167 has a double free vulnerability. An attacker can trick a user to install a malicious application which has a high privilege to exploit this vulnerability. Successful exploitation may cause denial of service (DoS) attack.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei vicky-al00a_firmware vicky-al00ac00b124d
huawei vicky-al00a_firmware vicky-al00ac00b157d
huawei vicky-al00a_firmware vicky-al00ac00b167
CVE-2017-15331 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, MAX PRESENCE V100R001C00, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00SPC200, V600R006C00, RSE6500 V500R002C00, SMC2.0 V100R003C10, V100R005C00, V500R002C00, V500R002C00T, V600R006C00, V600R006C00T, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, ViewPoint 9030 V100R011C02, V100R011C03, have an out-of-bounds read vulnerability in H323 protocol. An unauthenticated, remote attacker may send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause process reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar150-s_firmware v200r006c10
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c10
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei smc2.0_firmware v600r006c00
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ips_module_firmware v500r001c30
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei max_presence_firmware v100r001c00
huawei ar200_firmware v200r007c01
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei rp200_firmware v500r002c00spc200
huawei secospace_usg6300_firmware v500r001c50
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei smc2.0_firmware v500r002c00
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei smc2.0_firmware v500r002c00t
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei smc2.0_firmware v100r005c00
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar510_firmware v200r007c00
huawei smc2.0_firmware v600r006c00t
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-15332 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, MAX PRESENCE V100R001C00, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00SPC200, V600R006C00, RSE6500 V500R002C00, SMC2.0 V100R003C10, V100R005C00, V500R002C00, V500R002C00T, V600R006C00, V600R006C00T, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, ViewPoint 9030 V100R011C02, V100R011C03, have a memory leak vulnerability in H323 protocol. The vulnerability is due to insufficient verification of the packets. An unauthenticated, remote attacker could exploit this vulnerability by sending crafted packets. A successful exploit could cause a memory leak and eventual denial of service (DoS) condition on an affected device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar150-s_firmware v200r006c10
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c10
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei smc2.0_firmware v600r006c00
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ips_module_firmware v500r001c30
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei max_presence_firmware v100r001c00
huawei ar200_firmware v200r007c01
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei rp200_firmware v500r002c00spc200
huawei secospace_usg6300_firmware v500r001c50
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei smc2.0_firmware v500r002c00
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei smc2.0_firmware v500r002c00t
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei smc2.0_firmware v100r005c00
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar510_firmware v200r007c00
huawei smc2.0_firmware v600r006c00t
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-15333 MEDIUM

XML parser in Huawei S12700 V200R005C00,S1700 V200R009C00, V200R010C00,S3700 V100R006C03, V100R006C05,S5700 V200R001C00, V200R002C00, V200R003C00, V200R003C02, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,S6700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C02, V200R008C00, V200R009C00, V200R010C00,S7700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,S9700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,eCNS210_TD V100R004C10, V100R004C10SPC003, V100R004C10SPC100, V100R004C10SPC101, V100R004C10SPC102, V100R004C10SPC200, V100R004C10SPC221, V100R004C10SPC400 has a DOS vulnerability. An attacker may craft specific XML files to the affected products. Due to not check the specially XML file and to parse this file, successful exploit will result in DOS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r002c00
huawei s9700_firmware v200r008c00
huawei s9700_firmware v200r010c00
huawei s5700_firmware v200r002c00
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r008c00
huawei ecns210_td_firmware v100r004c10spc100
huawei ecns210_td_firmware v100r004c10spc400
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r005c00
huawei s9700_firmware v200r009c00
huawei s7700_firmware v200r005c00
huawei s9700_firmware v200r006c00
huawei s6700_firmware v200r005c00
huawei s7700_firmware v200r006c00
huawei ecns210_td_firmware v100r004c10spc221
huawei ecns210_td_firmware v100r004c10spc003
huawei ecns210_td_firmware v100r004c10
huawei s12700_firmware v200r005c00
huawei s5700_firmware v200r003c02
huawei s5700_firmware v200r010c00
huawei s5700_firmware v200r007c00
huawei s6700_firmware v200r009c00
huawei s7700_firmware v200r009c00
huawei ecns210_td_firmware v100r004c10spc200
huawei s5700_firmware v200r001c00
huawei s7700_firmware v200r001c00
huawei s5700_firmware v200r006c00
huawei s9700_firmware v200r001c00
huawei ecns210_td_firmware v100r004c10spc101
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r003c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s6700_firmware v200r010c00
huawei s6700_firmware v200r002c00
huawei s6700_firmware v200r005c02
huawei s5700_firmware v200r005c00
huawei s7700_firmware v200r002c00
huawei s7700_firmware v200r003c00
huawei s9700_firmware v200r003c00
huawei s1700_firmware v200r009c00
huawei s1700_firmware v200r010c00
huawei s7700_firmware v200r010c00
huawei ecns210_td_firmware v100r004c10spc102
huawei s6700_firmware v200r001c00
huawei s5700_firmware v200r003c00
CVE-2017-15334 MEDIUM

The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, USG9500 V500R001C00, V500R001C20, V500R001C30, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V100R001C20, V200R003C00, V200R003C20, V200R003C30 has a buffer overflow vulnerability. An attacker may send specially crafted messages to the affected products. Due to the insufficient validation of some values for SIP messages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei te30_firmware v500r002c00
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei ngfw_module_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v100r001c20
huawei secospace_usg6500_firmware v500r001c50
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei espace_u1981_firmware v100r001c20
huawei usg9580_firmware v300r001c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei secospace_usg6500_firmware v100r001c30
huawei secospace_usg6300_firmware v100r001c20
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei espace_u1981_firmware v200r003c30
huawei secospace_usg6300_firmware v100r001c10
huawei secospace_usg6600_firmware v100r001c30
huawei viewpoint_8660_firmware v100r008c03
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei espace_u1981_firmware v200r003c00
huawei ngfw_module_firmware v500r001c00
huawei rp200_firmware v600r006c0
huawei usg9560_firmware v300r001c20
huawei vp9660_firmware v200r001c30
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ngfw_module_firmware v100r001c20
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02
huawei ips_module_firmware v100r001c10
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v100r001c30
huawei ngfw_module_firmware v500r002c00
huawei secospace_usg6600_firmware v100r001c20
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v100r001c00
huawei vp9660_firmware v500r002c10
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-15335 MEDIUM

The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, USG9500 V500R001C00, V500R001C20, V500R001C30, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V100R001C20, V200R003C00, V200R003C20, V200R003C30 has a buffer overflow vulnerability. An attacker may send specially crafted messages to the affected products. Due to the insufficient validation of some values for SIP messages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei te30_firmware v500r002c00
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei ngfw_module_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v100r001c20
huawei secospace_usg6500_firmware v500r001c50
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei espace_u1981_firmware v100r001c20
huawei usg9580_firmware v300r001c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei secospace_usg6500_firmware v100r001c30
huawei secospace_usg6300_firmware v100r001c20
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei espace_u1981_firmware v200r003c30
huawei secospace_usg6300_firmware v100r001c10
huawei secospace_usg6600_firmware v100r001c30
huawei viewpoint_8660_firmware v100r008c03
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei espace_u1981_firmware v200r003c00
huawei ngfw_module_firmware v500r001c00
huawei rp200_firmware v600r006c0
huawei usg9560_firmware v300r001c20
huawei vp9660_firmware v200r001c30
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ngfw_module_firmware v100r001c20
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02
huawei ips_module_firmware v100r001c10
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v100r001c30
huawei ngfw_module_firmware v500r002c00
huawei secospace_usg6600_firmware v100r001c20
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v100r001c00
huawei vp9660_firmware v500r002c10
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-15336 MEDIUM

The SIP backup feature in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, USG9500 V500R001C00, V500R001C20, V500R001C30, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V100R001C20, V200R003C00, V200R003C20, V200R003C30 has a buffer overflow vulnerability. An attacker may send specially crafted messages to the affected products. Due to the insufficient validation of some values for SIP messages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei te30_firmware v500r002c00
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei ngfw_module_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v100r001c20
huawei secospace_usg6500_firmware v500r001c50
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei espace_u1981_firmware v100r001c20
huawei usg9580_firmware v300r001c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei secospace_usg6500_firmware v100r001c30
huawei secospace_usg6300_firmware v100r001c20
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei espace_u1981_firmware v200r003c30
huawei secospace_usg6300_firmware v100r001c10
huawei secospace_usg6600_firmware v100r001c30
huawei viewpoint_8660_firmware v100r008c03
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei espace_u1981_firmware v200r003c00
huawei ngfw_module_firmware v500r001c00
huawei rp200_firmware v600r006c0
huawei usg9560_firmware v300r001c20
huawei vp9660_firmware v200r001c30
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ngfw_module_firmware v100r001c20
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02
huawei ips_module_firmware v100r001c10
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v100r001c30
huawei ngfw_module_firmware v500r002c00
huawei secospace_usg6600_firmware v100r001c20
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v100r001c00
huawei vp9660_firmware v500r002c10
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-15337 MEDIUM

The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, USG9500 V500R001C00, V500R001C20, V500R001C30, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V100R001C20, V200R003C00, V200R003C20, V200R003C30 has a buffer overflow vulnerability. An attacker would have to find a way to craft specific messages to the affected products. Due to the insufficient validation for SIP messages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei te30_firmware v500r002c00
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei ngfw_module_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v100r001c20
huawei secospace_usg6500_firmware v500r001c50
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei espace_u1981_firmware v100r001c20
huawei usg9580_firmware v300r001c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei secospace_usg6500_firmware v100r001c30
huawei secospace_usg6300_firmware v100r001c20
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei espace_u1981_firmware v200r003c30
huawei secospace_usg6300_firmware v100r001c10
huawei secospace_usg6600_firmware v100r001c30
huawei viewpoint_8660_firmware v100r008c03
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei espace_u1981_firmware v200r003c00
huawei ngfw_module_firmware v500r001c00
huawei rp200_firmware v600r006c0
huawei usg9560_firmware v300r001c20
huawei vp9660_firmware v200r001c30
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ngfw_module_firmware v100r001c20
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02
huawei ips_module_firmware v100r001c10
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v100r001c30
huawei ngfw_module_firmware v500r002c00
huawei secospace_usg6600_firmware v100r001c20
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v100r001c00
huawei vp9660_firmware v500r002c10
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-15338 MEDIUM

The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, USG9500 V500R001C00, V500R001C20, V500R001C30, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V100R001C20, V200R003C00, V200R003C20, V200R003C30 has a buffer overflow vulnerability. An attacker would have to find a way to craft specific messages to the affected products. Due to the insufficient validation for SIP messages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei te30_firmware v500r002c00
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei ngfw_module_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v100r001c20
huawei secospace_usg6500_firmware v500r001c50
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei espace_u1981_firmware v100r001c20
huawei usg9580_firmware v300r001c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei secospace_usg6500_firmware v100r001c30
huawei secospace_usg6300_firmware v100r001c20
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei espace_u1981_firmware v200r003c30
huawei secospace_usg6300_firmware v100r001c10
huawei secospace_usg6600_firmware v100r001c30
huawei viewpoint_8660_firmware v100r008c03
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei espace_u1981_firmware v200r003c00
huawei ngfw_module_firmware v500r001c00
huawei rp200_firmware v600r006c0
huawei usg9560_firmware v300r001c20
huawei vp9660_firmware v200r001c30
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ngfw_module_firmware v100r001c20
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02
huawei ips_module_firmware v100r001c10
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v100r001c30
huawei ngfw_module_firmware v500r002c00
huawei secospace_usg6600_firmware v100r001c20
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v100r001c00
huawei vp9660_firmware v500r002c10
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-15339 MEDIUM

The SIP module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, USG9500 V500R001C00, V500R001C20, V500R001C30, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V200R001C02, V200R001C30, V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V100R001C20, V200R003C00, V200R003C20, V200R003C30 has a buffer overflow vulnerability. An attacker would have to find a way to craft specific messages to the affected products. Due to the insufficient validation for SIP messages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei te30_firmware v500r002c00
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei ngfw_module_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v100r001c20
huawei secospace_usg6500_firmware v500r001c50
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei espace_u1981_firmware v100r001c20
huawei usg9580_firmware v300r001c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei secospace_usg6500_firmware v100r001c30
huawei secospace_usg6300_firmware v100r001c20
huawei usg9520_firmware v300r001c01
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei espace_u1981_firmware v200r003c30
huawei secospace_usg6300_firmware v100r001c10
huawei secospace_usg6600_firmware v100r001c30
huawei viewpoint_8660_firmware v100r008c03
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei espace_u1981_firmware v200r003c00
huawei ngfw_module_firmware v500r001c00
huawei rp200_firmware v600r006c0
huawei usg9560_firmware v300r001c20
huawei vp9660_firmware v200r001c30
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ngfw_module_firmware v100r001c20
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02
huawei ips_module_firmware v100r001c10
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v100r001c30
huawei ngfw_module_firmware v500r002c00
huawei secospace_usg6600_firmware v100r001c20
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v100r001c00
huawei vp9660_firmware v500r002c10
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-15340 MEDIUM

Huawei smartphones with software of TAG-AL00C92B168 have an information disclosure vulnerability. An attacker tricks the user to install a crafted application, this application simulate click action to back up data in a non-encrypted way using an Android assist function. Successful exploit could result in information disclosure.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei tag-al00_firmware tag-al00c92b168
CVE-2017-15341 MEDIUM

Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00, TE60 V600R006C00 have a denial of service vulnerability. The software decodes X.509 certificate in an improper way. A remote unauthenticated attacker could send a crafted X.509 certificate to the device. Successful exploit could result in a denial of service on the device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
huawei te50_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei ar3200_firmware v200r008c30
huawei ar3200_firmware v200r008c20
huawei te40_firmware v600r006c00
CVE-2017-15342 MEDIUM

Huawei DP300 V500R002C00, TE60 V600R006C00, TP3106 V100R002C00, eSpace U1981 V200R003C30SPC100 have a denial of service vulnerability. The software does not correctly calculate the rest size in a buffer when handling SSL connections. A remote unauthenticated attacker could send a lot of crafted SSL messages to the device, successful exploit could cause no space in the buffer and then denial of service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei tp3106_firmware v100r002c00
huawei dp300_firmware v500r002c00
huawei te60_firmware v600r006c00
huawei espace_u1981_firmware v200r003c30spc100
CVE-2017-15343 HIGH

Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei ar3200_firmware v200r008c10
huawei ar1200_firmware v200r007c02
huawei ar1200_firmware v200r007c01
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei ar120-s_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei ar120-s_firmware v200r007c00
huawei ar120-s_firmware v200r008c20
CVE-2017-15344 HIGH

Huawei AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30 has an integer overflow vulnerability. The software does not sufficiently validate certain field in SCTP messages, a remote unauthenticated attacker could send a crafted SCTP message to the device. Successful exploit could cause system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei ar3200_firmware v200r008c10
huawei ar1200_firmware v200r007c02
huawei ar1200_firmware v200r007c01
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei ar120-s_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei ar120-s_firmware v200r007c00
huawei ar120-s_firmware v200r008c20
CVE-2017-15345 MEDIUM

Huawei Smartphones with software LON-L29DC721B186 have a denial of service vulnerability. An attacker could make an loop exit condition that cannot be reached by sending the crafted 3GPP message. Successful exploit could cause the device to reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei lon-l29d_firmware lon-l29dc721b186
CVE-2017-15346 MEDIUM

XML parser in Huawei S12700 V200R005C00,S1700 V200R009C00, V200R010C00,S3700 V100R006C03, V100R006C05,S5700 V200R001C00, V200R002C00, V200R003C00, V200R003C02, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,S6700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C02, V200R008C00, V200R009C00, V200R010C00,S7700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,S9700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,eCNS210_TD V100R004C10, V100R004C10SPC003, V100R004C10SPC100, V100R004C10SPC101, V100R004C10SPC102, V100R004C10SPC200, V100R004C10SPC221, V100R004C10SPC400 has a DOS vulnerability. An attacker may craft specific XML files to the affected products. Due to not check the specially XML file and to parse this file, successful exploit will result in DOS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r002c00
huawei s9700_firmware v200r008c00
huawei s9700_firmware v200r010c00
huawei s5700_firmware v200r002c00
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r008c00
huawei ecns210_td_firmware v100r004c10spc100
huawei ecns210_td_firmware v100r004c10spc400
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r005c00
huawei s9700_firmware v200r009c00
huawei s7700_firmware v200r005c00
huawei s9700_firmware v200r006c00
huawei s6700_firmware v200r005c00
huawei s7700_firmware v200r006c00
huawei ecns210_td_firmware v100r004c10spc221
huawei ecns210_td_firmware v100r004c10spc003
huawei ecns210_td_firmware v100r004c10
huawei s12700_firmware v200r005c00
huawei s5700_firmware v200r003c02
huawei s5700_firmware v200r010c00
huawei s5700_firmware v200r007c00
huawei s6700_firmware v200r009c00
huawei s7700_firmware v200r009c00
huawei ecns210_td_firmware v100r004c10spc200
huawei s5700_firmware v200r001c00
huawei s7700_firmware v200r001c00
huawei s5700_firmware v200r006c00
huawei s9700_firmware v200r001c00
huawei ecns210_td_firmware v100r004c10spc101
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r003c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s6700_firmware v200r010c00
huawei s6700_firmware v200r002c00
huawei s6700_firmware v200r005c02
huawei s5700_firmware v200r005c00
huawei s7700_firmware v200r002c00
huawei s7700_firmware v200r003c00
huawei s9700_firmware v200r003c00
huawei s1700_firmware v200r009c00
huawei s1700_firmware v200r010c00
huawei s7700_firmware v200r010c00
huawei ecns210_td_firmware v100r004c10spc102
huawei s6700_firmware v200r001c00
huawei s5700_firmware v200r003c00
CVE-2017-15347 HIGH

Huawei Mate 9 Pro mobile phones with software of versions earlier than LON-AL00BC00B235 have a use after free (UAF) vulnerability. An attacker tricks a user into installing a malicious application, and the application can riggers access memory after free it. A local attacker may exploit this vulnerability to cause the mobile phone to crash.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei mate_9_pro_firmware lon-al00bc00b235
CVE-2017-15348 HIGH

Huawei IPS Module V500R001C00, NGFW Module V500R001C00, NIP6300 V500R001C00, NIP6600 V500R001C00, Secospace USG6300 V500R001C00, Secospace USG6500 V500R001C00, Secospace USG6600 V500R001C00, USG9500 V500R001C00 have an insufficient input validation vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei nip6300_firmware v500r001c00
huawei nip6600_firmware v500r001c00
huawei usg9500_firmware v500r001c00
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c00
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c00
huawei ips_module_firmware v500r001c00
CVE-2017-15349 MEDIUM

Huawei CloudEngine 12800 V100R003C00, V100R005C00, V100R005C10, V100R006C00,CloudEngine 5800 V100R003C00, V100R005C00, V100R005C10, V100R006C00,CloudEngine 6800 V100R003C00, V100R005C00, V100R005C10, V100R006C00,CloudEngine 7800 V100R003C00, V100R005C00, V100R005C10, V100R006C00 have a memory leak vulnerability. An unauthenticated attacker may send specific Resource ReServation Protocol (RSVP) packets to the affected products. Due to not release the memory to handle the packets, successful exploit will result in memory leak of the affected products and lead to a DoS condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v100r005c10
huawei cloudengine_6800_firmware v100r005c10
huawei cloudengine_12800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r005c00
huawei cloudengine_7800_firmware v100r006c00
huawei cloudengine_5800_firmware v100r006c00
huawei cloudengine_7800_firmware v100r003c00
huawei cloudengine_12800_firmware v100r006c00
huawei cloudengine_7800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r003c00
huawei cloudengine_12800_firmware v100r003c00
huawei cloudengine_5800_firmware v100r005c10
huawei cloudengine_5800_firmware v100r005c00
huawei cloudengine_6800_firmware v100r006c00
huawei cloudengine_7800_firmware v100r005c10
huawei cloudengine_5800_firmware v100r003c00
CVE-2017-15350 MEDIUM

The Common Open Policy Service Protocol (COPS) module in Huawei DP300 V500R002C00, IPS Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, RP200 V500R002C00, V600R006C00, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10,SVN5800-C V200R003C00, V200R003C10, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3206 V100R002C00, V100R002C10,USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50 haa a buffer overflow vulnerability. An unauthenticated, remote attacker could exploit this vulnerability by sending specially crafted message to the affected products. The vulnerability is due to insufficient input validation of the message, which could result in a buffer overflow. Successful exploit may cause some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei te30_firmware v500r002c00
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei ngfw_module_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v100r001c20
huawei secospace_usg6500_firmware v500r001c50
huawei te60_firmware v100r001c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei te60_firmware v100r001c10
huawei secospace_usg6500_firmware v100r001c30
huawei secospace_usg6300_firmware v100r001c20
huawei ips_module_firmware v100r001c20
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei secospace_usg6600_firmware v100r001c30
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei svn5600_firmware v200r003c00
huawei secospace_usg6600_firmware v100r001c10
huawei te40_firmware v500r002c00
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei ngfw_module_firmware v500r001c00
huawei svn5800_firmware v200r003c10
huawei ngfw_module_firmware v100r001c20
huawei svn5800-c_firmware v200r003c00
huawei usg9500_firmware v500r001c50
huawei ips_module_firmware v100r001c10
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei te30_firmware v100r001c02
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v100r001c10
huawei secospace_usg6300_firmware v500r001c00
huawei rp200_firmware v600r006c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-15351 HIGH

The 'Find Phone' function in Huawei Honor V9 play smart phones with versions earlier than Jimmy-AL00AC00B135 has an authentication bypass vulnerability. Due to improper authentication realization in the 'Find Phone' function. An attacker may exploit the vulnerability to bypass the 'Find Phone' function in order to use the phone normally.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_v9_play_firmware jimmy-al00ac00b135
CVE-2017-15352 LOW

Huawei OceanStor 2800 V3, V300R003C00, V300R003C20, OceanStor 5300 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5500 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5600 V3, V300R003C00, V300R003C10, V300R003C20, OceanStor 5800 V3, V300R003C00, V300R003C10, V300R003C20 have an improper access control vulnerability. Due to incorrectly restrict access to a resource, an attacker with high privilege may exploit the vulnerability to query some information or send specific message to cause some service abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
huawei oceanstor_5800_firmware v300r003c20
huawei oceanstor_5800_firmware v300r003c00
huawei oceanstor_5500_firmware v300r003c20
huawei oceanstor_5500_firmware v300r003c00
huawei oceanstor_5300_firmware v300r003c20
huawei oceanstor_2800_firmware v300r003c20
huawei oceanstor_5600_firmware v300r003c00
huawei oceanstor_5500_firmware v300r003c10
huawei oceanstor_5600_firmware v300r003c10
huawei oceanstor_5600_firmware v300r003c20
huawei oceanstor_5300_firmware v300r003c00
huawei oceanstor_5300_firmware v300r003c10
huawei oceanstor_2800_firmware v300r003c00
huawei oceanstor_5800_firmware v300r003c10
CVE-2017-15353 MEDIUM

Huawei DP300, V500R002C00, RP200, V500R002C00, V600R006C00, RSE6500, V500R002C00, TE30, V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00, V600R006C00, TE60, V100R001C01, V100R001C10, V500R002C00, V600R006C00, TX50, V500R002C00, V600R006C00, VP9660, V500R002C00, V500R002C10, ViewPoint 8660, V100R008C03, ViewPoint 9030, V100R011C02, V100R011C03, Viewpoint 8660, V100R008C03 have an out-of-bounds read vulnerability. An attacker has to control the peer device and send specially crafted messages to the affected products. Due to insufficient input validation, successful exploit may cause some service abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei rse6500_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei tx50_firmware v600r006c00
huawei te60_firmware v100r001c01
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei vp9660_firmware v500r002c10
huawei te60_firmware v600r006c00
huawei tx50_firmware v500r002c00
huawei vp9660_firmware v500r002c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
huawei viewpoint_9030_firmware v100r011c02
huawei viewpoint_8660_firmware v100r008c03
CVE-2017-15354 MEDIUM

Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially crafted HTTP messages to the affected products. Due insufficient input validation of three different parameters in the messages, successful exploit may cause some service abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei tx50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei tx50_firmware v500r002c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-15355 MEDIUM

Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially crafted HTTP messages to the affected products. Due insufficient input validation of three different parameters in the messages, successful exploit may cause some service abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei tx50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei tx50_firmware v500r002c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-15356 MEDIUM

Huawei DP300, V500R002C00, RP200, V600R006C00, TE30, V100R001C10, V500R002C00,V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00,V600R006C00, TE60, V100R001C10, V500R002C00, V600R006C00, TX50,V500R002C00, V600R006C00 have a buffer overflow vulnerability. An attacker may send specially crafted HTTP messages to the affected products. Due insufficient input validation of three different parameters in the messages, successful exploit may cause some service abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei tx50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei tx50_firmware v500r002c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17131 MEDIUM

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V600R006C00; TE50 V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00; VP9660 V500R002C10 have an DoS vulnerability due to insufficient validation of the parameter when a putty comment key is loaded. An authenticated remote attacker can place a malformed putty key file in system when a system manager load the key an infinite loop happens which lead to reboot the system.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei te50_firmware v600r006c00
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v600r006c00
huawei vp9660_firmware v500r002c10
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
huawei rp200_firmware v500r002c00
CVE-2017-17132 LOW

Huawei VP9660 V500R002C10 has a uncontrolled format string vulnerability when the license module output the log information. An authenticated local attacker could exploit this vulnerability to cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: CWE-134,

Products Affected

Vendor Product Version
huawei vp9660_firmware v500r002c10
CVE-2017-17133 LOW

Huawei VP9660 V500R002C10 has a null pointer reference vulnerability in license module due to insufficient verification. An authenticated local attacker could place a malicious license file into system which cause memory null pointer accessing and related processing crash. The attacker can exploit this vulnerability to cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei vp9660_firmware v500r002c10
CVE-2017-17134 LOW

XML parser in Huawei DP300 V500R002C00; RP200 V500R002C00SPC200; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has a DoS vulnerability. Due to not check the specially XML file enough an authenticated local attacker may craft specific XML files to the affected products and parse this file which cause to null pointer accessing and result in DoS attacks.

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei rp200_firmware v500r002c00spc200
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17135 LOW

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R006C10; V200R009C00; V200R010C00; S2700 V200R006C10; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S5700 V200R006C00; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S6700 V200R008C00; V200R009C00; V200R010C00; S7700 V200R007C00; V200R008C00; V200R009C00; V200R010C00; S9700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; Secospace USG6300 V500R001C00; V500R001C30; Secospace USG6500 V500R001C00; V500R001C30; Secospace USG6600 V500R001C00; V500R001C30S; TE30 V100R001C02; V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C01; V100R001C10; V500R002C00; V600R006C00; TP3106 V100R002C00; TP3206 V100R002C00; V100R002C10; USG9500 V500R001C00; V500R001C30; ViewPoint 9030 V100R011C02; V100R011C03 has a null pointer reference vulnerability due to insufficient verification. An authenticated local attacker calls PEM decoder with special parameter which could cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s7700_firmware v200r008c00
huawei te30_firmware v500r002c00
huawei s9700_firmware v200r007c01
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r009c00
huawei secospace_usg6500_firmware v500r001c00
huawei te60_firmware v100r001c10
huawei s7700_firmware v200r009c00
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei usg9500_firmware v500r001c30
huawei s6700_firmware v200r010c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei s12700_firmware v200r010c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei tp3106_firmware v100r002c00
huawei s1700_firmware v200r010c00
huawei ngfw_module_firmware v500r001c00
huawei s2700_firmware v200r007c00
huawei s1700_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c02
huawei s9700_firmware v200r010c00
huawei s9700_firmware v200r007c00
huawei tp3206_firmware v100r002c00
huawei secospace_usg6600_firmware v500r001c30s
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei te60_firmware v100r001c02
huawei s5700_firmware v200r010c00
huawei secospace_usg6300_firmware v500r001c00
huawei s5700_firmware v200r007c00
huawei rp200_firmware v600r006c00
huawei s6700_firmware v200r009c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei dp300_firmware v500r002c00
huawei s5700_firmware v200r008c00
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei s2700_firmware v200r006c10
huawei nip6300_firmware v500r001c00
huawei s2700_firmware v200r010c00
huawei s1700_firmware v200r009c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei s2700_firmware v200r008c00
huawei tp3206_firmware v100r002c10
huawei s12700_firmware v200r007c01
huawei s12700_firmware v200r007c00
huawei s7700_firmware v200r010c00
huawei s2700_firmware v200r009c00
CVE-2017-17136 LOW

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R006C10; V200R009C00; V200R010C00; S2700 V200R006C10; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S5700 V200R006C00; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S6700 V200R008C00; V200R009C00; V200R010C00; S7700 V200R007C00; V200R008C00; V200R009C00; V200R010C00; S9700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; Secospace USG6300 V500R001C00; V500R001C30; Secospace USG6500 V500R001C00; V500R001C30; Secospace USG6600 V500R001C00; V500R001C30S; TE30 V100R001C02; V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C01; V100R001C10; V500R002C00; V600R006C00; TP3106 V100R002C00; TP3206 V100R002C00; V100R002C10; USG9500 V500R001C00; V500R001C30; ViewPoint 9030 V100R011C02; V100R011C03 has a heap overflow vulnerability due to insufficient verification. An authenticated local attacker can make processing crash by a malicious certificate. The attacker can exploit this vulnerability to cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s7700_firmware v200r008c00
huawei te30_firmware v500r002c00
huawei s9700_firmware v200r007c01
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r009c00
huawei secospace_usg6500_firmware v500r001c00
huawei te60_firmware v100r001c10
huawei s7700_firmware v200r009c00
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei usg9500_firmware v500r001c30
huawei s6700_firmware v200r010c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei s12700_firmware v200r010c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei tp3106_firmware v100r002c00
huawei s1700_firmware v200r010c00
huawei ngfw_module_firmware v500r001c00
huawei s2700_firmware v200r007c00
huawei s1700_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c02
huawei s9700_firmware v200r010c00
huawei s9700_firmware v200r007c00
huawei tp3206_firmware v100r002c00
huawei secospace_usg6600_firmware v500r001c30s
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei te60_firmware v100r001c02
huawei s5700_firmware v200r010c00
huawei secospace_usg6300_firmware v500r001c00
huawei s5700_firmware v200r007c00
huawei rp200_firmware v600r006c00
huawei s6700_firmware v200r009c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei dp300_firmware v500r002c00
huawei s5700_firmware v200r008c00
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei s2700_firmware v200r006c10
huawei nip6300_firmware v500r001c00
huawei s2700_firmware v200r010c00
huawei s1700_firmware v200r009c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei s2700_firmware v200r008c00
huawei tp3206_firmware v100r002c10
huawei s12700_firmware v200r007c01
huawei s12700_firmware v200r007c00
huawei s7700_firmware v200r010c00
huawei s2700_firmware v200r009c00
CVE-2017-17137 LOW

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R006C10; V200R009C00; V200R010C00; S2700 V200R006C10; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S5700 V200R006C00; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S6700 V200R008C00; V200R009C00; V200R010C00; S7700 V200R007C00; V200R008C00; V200R009C00; V200R010C00; S9700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; Secospace USG6300 V500R001C00; V500R001C30; Secospace USG6500 V500R001C00; V500R001C30; Secospace USG6600 V500R001C00; V500R001C30S; TE30 V100R001C02; V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C01; V100R001C10; V500R002C00; V600R006C00; TP3106 V100R002C00; TP3206 V100R002C00; V100R002C10; USG9500 V500R001C00; V500R001C30; ViewPoint 9030 V100R011C02; V100R011C03 has an Out-of-Bounds memory access vulnerability due to insufficient verification. An authenticated local attacker can make processing crash by a malicious certificate. The attacker can exploit this vulnerability to cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s7700_firmware v200r008c00
huawei te30_firmware v500r002c00
huawei s9700_firmware v200r007c01
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r009c00
huawei secospace_usg6500_firmware v500r001c00
huawei te60_firmware v100r001c10
huawei s7700_firmware v200r009c00
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei usg9500_firmware v500r001c30
huawei s6700_firmware v200r010c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei s12700_firmware v200r010c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei tp3106_firmware v100r002c00
huawei s1700_firmware v200r010c00
huawei ngfw_module_firmware v500r001c00
huawei s2700_firmware v200r007c00
huawei s1700_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c02
huawei s9700_firmware v200r010c00
huawei s9700_firmware v200r007c00
huawei tp3206_firmware v100r002c00
huawei secospace_usg6600_firmware v500r001c30s
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei te60_firmware v100r001c02
huawei s5700_firmware v200r010c00
huawei secospace_usg6300_firmware v500r001c00
huawei s5700_firmware v200r007c00
huawei rp200_firmware v600r006c00
huawei s6700_firmware v200r009c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei dp300_firmware v500r002c00
huawei s5700_firmware v200r008c00
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei s2700_firmware v200r006c10
huawei nip6300_firmware v500r001c00
huawei s2700_firmware v200r010c00
huawei s1700_firmware v200r009c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei s2700_firmware v200r008c00
huawei tp3206_firmware v100r002c10
huawei s12700_firmware v200r007c01
huawei s12700_firmware v200r007c00
huawei s7700_firmware v200r010c00
huawei s2700_firmware v200r009c00
CVE-2017-17138 LOW

PEM module of DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R006C10; V200R009C00; V200R010C00; S2700 V200R006C10; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S5700 V200R006C00; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S6700 V200R008C00; V200R009C00; V200R010C00; S7700 V200R007C00; V200R008C00; V200R009C00; V200R010C00; S9700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; Secospace USG6300 V500R001C00; V500R001C30; Secospace USG6500 V500R001C00; V500R001C30; Secospace USG6600 V500R001C00; V500R001C30S; TE30 V100R001C02; V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C01; V100R001C10; V500R002C00; V600R006C00; TP3106 V100R002C00; TP3206 V100R002C00; V100R002C10; USG9500 V500R001C00; V500R001C30; ViewPoint 9030 V100R011C02; V100R011C03 has a DoS vulnerability in PEM module of Huawei products due to insufficient verification. An authenticated local attacker can make processing into deadloop by a malicious certificate. The attacker can exploit this vulnerability to cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s7700_firmware v200r008c00
huawei te30_firmware v500r002c00
huawei s9700_firmware v200r007c01
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r009c00
huawei secospace_usg6500_firmware v500r001c00
huawei te60_firmware v100r001c10
huawei s7700_firmware v200r009c00
huawei te30_firmware v100r001c10
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei usg9500_firmware v500r001c30
huawei s6700_firmware v200r010c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei s12700_firmware v200r010c00
huawei te40_firmware v600r006c00
huawei ips_module_firmware v500r001c00
huawei tp3106_firmware v100r002c00
huawei s1700_firmware v200r010c00
huawei ngfw_module_firmware v500r001c00
huawei s2700_firmware v200r007c00
huawei s1700_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c02
huawei s9700_firmware v200r010c00
huawei s9700_firmware v200r007c00
huawei tp3206_firmware v100r002c00
huawei secospace_usg6600_firmware v500r001c30s
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r001c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei te60_firmware v100r001c02
huawei s5700_firmware v200r010c00
huawei secospace_usg6300_firmware v500r001c00
huawei s5700_firmware v200r007c00
huawei rp200_firmware v600r006c00
huawei s6700_firmware v200r009c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei dp300_firmware v500r002c00
huawei s5700_firmware v200r008c00
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei s2700_firmware v200r006c10
huawei nip6300_firmware v500r001c00
huawei s2700_firmware v200r010c00
huawei s1700_firmware v200r009c00
huawei viewpoint_9030_firmware v100r011c03
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei s2700_firmware v200r008c00
huawei tp3206_firmware v100r002c10
huawei s12700_firmware v200r007c01
huawei s12700_firmware v200r007c00
huawei s7700_firmware v200r010c00
huawei s2700_firmware v200r009c00
CVE-2017-17139 MEDIUM

Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334(C00); the versions before LON-AL00B 8.0.0.334(C00) have a information leak vulnerability in the date service proxy implementation. An attacker may trick a user into installing a malicious application and application can exploit the vulnerability to get kernel date which may cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei mate_9_pro_firmware *
CVE-2017-17140 MEDIUM

Huawei Enjoy 5s and Y6 Pro smartphones with software the versions before TAG-AL00C92B170; the versions before TIT-L01C576B121 have an information leak vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious application on the smart phone and the application can read some sensitive information in kernel memory which may cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei y6_pro_firmware *
huawei enjoy_5s_firmware *
CVE-2017-17141 MEDIUM

Huawei S12700 V200R005C00; V200R006C00; V200R007C00; V200R007C01; V200R007C20; V200R008C00; V200R009C00;S1700 V200R006C10; V200R009C00;S2700 V100R006C03; V200R003C00; V200R005C00; V200R006C00; V200R006C10; V200R007C00; V200R007C00B050; V200R007C00SPC009T; V200R007C00SPC019T; V200R008C00; V200R009C00;S3700 V100R006C03;S5700 V200R001C00; V200R001C01; V200R002C00; V200R003C00; V200R003C02; V200R005C00; V200R005C01; V200R005C02; V200R005C03; V200R006C00; V200R007C00; V200R008C00; V200R009C00;S6700 V200R001C00; V200R001C01; V200R002C00; V200R003C00; V200R005C00; V200R005C01; V200R005C02; V200R008C00; V200R009C00;S7700 V200R001C00; V200R001C01; V200R002C00; V200R003C00; V200R005C00; V200R006C00; V200R006C01; V200R007C00; V200R007C01; V200R008C00; V200R008C06; V200R009C00;S9700 V200R001C00; V200R001C01; V200R002C00; V200R003C00; V200R005C00; V200R006C00; V200R007C00; V200R007C01; V200R008C00; V200R009C00 have a memory leak vulnerability. In some specific conditions, if attackers send specific malformed MPLS Service PING messages to the affected products, products do not release the memory when handling the packets. So successful exploit will result in memory leak of the affected products.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r002c00
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s5700_firmware v200r002c00
huawei s12700_firmware v200r007c20
huawei s7700_firmware v200r008c00
huawei s9700_firmware v200r007c01
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r005c00
huawei s9700_firmware v200r009c00
huawei s9700_firmware v200r006c00
huawei s6700_firmware v200r005c00
huawei s7700_firmware v200r006c00
huawei s5700_firmware v200r003c02
huawei s7700_firmware v200r008c06
huawei s7700_firmware v200r007c01
huawei s7700_firmware v200r009c00
huawei s5700_firmware v200r001c00
huawei s7700_firmware v200r001c00
huawei s2700_firmware v200r007c00spc019t
huawei s6700_firmware v200r003c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s6700_firmware v200r002c00
huawei s7700_firmware v200r002c00
huawei s6700_firmware v200r001c01
huawei s2700_firmware v200r005c00
huawei s9700_firmware v200r003c00
huawei s2700_firmware v100r006c03
huawei s2700_firmware v200r007c00spc009t
huawei s2700_firmware v200r007c00
huawei s1700_firmware v200r006c10
huawei s5700_firmware v200r005c03
huawei s7700_firmware v200r006c01
huawei s6700_firmware v200r001c00
huawei s2700_firmware v200r006c00
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r005c00
huawei s9700_firmware v200r001c01
huawei s5700_firmware v200r005c02
huawei s2700_firmware v200r007c00b050
huawei s12700_firmware v200r005c00
huawei s12700_firmware v200r006c00
huawei s5700_firmware v200r007c00
huawei s6700_firmware v200r009c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei s9700_firmware v200r001c00
huawei s5700_firmware v200r008c00
huawei s2700_firmware v200r006c10
huawei s3700_firmware v100r006c03
huawei s6700_firmware v200r005c02
huawei s5700_firmware v200r005c00
huawei s6700_firmware v200r005c01
huawei s7700_firmware v200r003c00
huawei s7700_firmware v200r001c01
huawei s1700_firmware v200r009c00
huawei s2700_firmware v200r008c00
huawei s12700_firmware v200r007c01
huawei s12700_firmware v200r007c00
huawei s2700_firmware v200r003c00
huawei s5700_firmware v200r005c01
huawei s2700_firmware v200r009c00
huawei s5700_firmware v200r001c01
huawei s5700_firmware v200r003c00
CVE-2017-17142 MEDIUM

SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC300T; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00T; TE30 V100R001C10; V100R001C10SPC100; V100R001C10SPC200B010; V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V100R001C10SPC800; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE60 V100R001C01SPC100; V100R001C01SPC107TB010; V100R001C10; V100R001C10SPC300; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800; V100R001C10SPC900; V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300; TP3106 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C00SPC800; TP3206 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C10; ViewPoint 9030 V100R011C02SPC100; V100R011C03B012SP15; V100R011C03B012SP16; V100R011C03B015SP03; V100R011C03LGWL01SPC100; V100R011C03SPC100; V100R011C03SPC200; V100R011C03SPC300; V100R011C03SPC400; V100R011C03SPC500; eSpace U1960 V200R003C30SPC200; eSpace U1981 V100R001C20SPC700; V200R003C20SPCa00 has an overflow vulnerability that attacker can exploit by sending a specially crafted SIP message leading to a process reboot at random.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v500r002c00spc700
huawei viewpoint_9030_firmware v100r011c03spc300
huawei rp200_firmware v600r006c00spc200
huawei te60_firmware v500r002c00spca00
huawei tp3106_firmware v100r002c00spc700
huawei te60_firmware v100r001c10spc800
huawei te40_firmware v600r006c00spc200
huawei espace_u1981_firmware v200r003c20spca00
huawei tp3206_firmware v100r002c00spc700
huawei te60_firmware v100r001c10spc700
huawei viewpoint_9030_firmware v100r011c03spc200
huawei tp3106_firmware v100r002c00spc800
huawei te60_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100
huawei te30_firmware v100r001c10spc300
huawei rse6500_firmware v500r002c00spc200
huawei dp300_firmware v500r002c00spc900
huawei rse6500_firmware v500r002c00spc500
huawei dp300_firmware v500r002c00spc100
huawei te30_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03spc100
huawei rse6500_firmware v500r002c00t
huawei rse6500_firmware v500r002c00spc700
huawei te60_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc100
huawei te60_firmware v600r006c00spc100
huawei tp3106_firmware v100r002c00
huawei rse6500_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03b012sp15
huawei dp300_firmware v500r002c00spca00
huawei te30_firmware v500r002c00spcb00
huawei rse6500_firmware v500r002c00spc300t
huawei te30_firmware v100r001c10spc600
huawei te60_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc500
huawei te60_firmware v100r001c01spc107tb010
huawei rse6500_firmware v500r002c00spc100
huawei te50_firmware v600r006c00
huawei rse6500_firmware v500r002c00spc300
huawei te60_firmware v100r001c01spc100
huawei tp3106_firmware v100r002c00spc600
huawei te30_firmware v100r001c10spc100
huawei rp200_firmware v600r006c00
huawei te60_firmware v500r002c00spc900
huawei te30_firmware v500r002c00spc500
huawei te40_firmware v500r002c00spc700
huawei te30_firmware v100r001c10spc800
huawei te40_firmware v500r002c00spcb00
huawei te60_firmware v100r001c10spc400
huawei dp300_firmware v500r002c00
huawei te30_firmware v100r001c10spc700b010
huawei te60_firmware v600r006c00spc300
huawei te30_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc900
huawei dp300_firmware v500r002c00spc800
huawei te60_firmware v500r002c00spc700
huawei te60_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc300
huawei te30_firmware v500r002c00spc900
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei tp3206_firmware v100r002c10
huawei te40_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc200b010
huawei dp300_firmware v500r002c00spc500
huawei te60_firmware v500r002c00spc300
huawei tp3106_firmware v100r002c00spc400
huawei tp3106_firmware v100r002c00spc200
huawei te60_firmware v500r002c00spc200
huawei te30_firmware v500r002c00spc600
huawei te60_firmware v600r006c00spc200
huawei te60_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei rp200_firmware v500r002c00spc200
huawei te60_firmware v500r002c00spcd00
huawei te40_firmware v500r002c00spc900
huawei te40_firmware v600r006c00
huawei te60_firmware v100r001c10spc500
huawei tp3206_firmware v100r002c00spc600
huawei tp3206_firmware v100r002c00spc400
huawei te50_firmware v600r006c00spc200
huawei viewpoint_9030_firmware v100r011c02spc100
huawei te50_firmware v500r002c00spcb00
huawei espace_u1981_firmware v100r001c20spc700
huawei tp3206_firmware v100r002c00
huawei dp300_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03b012sp16
huawei dp300_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03spc500
huawei viewpoint_9030_firmware v100r011c03spc400
huawei te60_firmware v100r001c10spc300
huawei viewpoint_9030_firmware v100r011c03b015sp03
huawei espace_u1960_firmware v200r003c30spc200
huawei tp3206_firmware v100r002c00spc200
huawei te50_firmware v500r002c00spc700
CVE-2017-17143 MEDIUM

SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC300T; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00T; TE30 V100R001C10; V100R001C10SPC100; V100R001C10SPC200B010; V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V100R001C10SPC800; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE60 V100R001C01SPC100; V100R001C01SPC107TB010; V100R001C10; V100R001C10SPC300; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800; V100R001C10SPC900; V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300; TP3106 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C00SPC800; TP3206 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C10; ViewPoint 9030 V100R011C02SPC100; V100R011C03B012SP15; V100R011C03B012SP16; V100R011C03B015SP03; V100R011C03LGWL01SPC100; V100R011C03SPC100; V100R011C03SPC200; V100R011C03SPC300; V100R011C03SPC400; V100R011C03SPC500; eSpace U1960 V200R003C30SPC200; eSpace U1981 V100R001C20SPC700; V200R003C20SPCa00 has an overflow vulnerability that the module cannot parse a malformed SIP message when validating variables. Attacker can exploit it to make one process reboot at random.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v500r002c00spc700
huawei viewpoint_9030_firmware v100r011c03spc300
huawei rp200_firmware v600r006c00spc200
huawei te60_firmware v500r002c00spca00
huawei tp3106_firmware v100r002c00spc700
huawei te60_firmware v100r001c10spc800
huawei te40_firmware v600r006c00spc200
huawei espace_u1981_firmware v200r003c20spca00
huawei tp3206_firmware v100r002c00spc700
huawei te60_firmware v100r001c10spc700
huawei viewpoint_9030_firmware v100r011c03spc200
huawei tp3106_firmware v100r002c00spc800
huawei te60_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100
huawei te30_firmware v100r001c10spc300
huawei rse6500_firmware v500r002c00spc200
huawei dp300_firmware v500r002c00spc900
huawei rse6500_firmware v500r002c00spc500
huawei dp300_firmware v500r002c00spc100
huawei te30_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03spc100
huawei rse6500_firmware v500r002c00t
huawei rse6500_firmware v500r002c00spc700
huawei te60_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc100
huawei te60_firmware v600r006c00spc100
huawei tp3106_firmware v100r002c00
huawei rse6500_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03b012sp15
huawei dp300_firmware v500r002c00spca00
huawei te30_firmware v500r002c00spcb00
huawei rse6500_firmware v500r002c00spc300t
huawei te30_firmware v100r001c10spc600
huawei te60_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc500
huawei te60_firmware v100r001c01spc107tb010
huawei rse6500_firmware v500r002c00spc100
huawei te50_firmware v600r006c00
huawei rse6500_firmware v500r002c00spc300
huawei te60_firmware v100r001c01spc100
huawei tp3106_firmware v100r002c00spc600
huawei te30_firmware v100r001c10spc100
huawei rp200_firmware v600r006c00
huawei te60_firmware v500r002c00spc900
huawei te30_firmware v500r002c00spc500
huawei te40_firmware v500r002c00spc700
huawei te30_firmware v100r001c10spc800
huawei te40_firmware v500r002c00spcb00
huawei te60_firmware v100r001c10spc400
huawei dp300_firmware v500r002c00
huawei te30_firmware v100r001c10spc700b010
huawei te60_firmware v600r006c00spc300
huawei te30_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc900
huawei dp300_firmware v500r002c00spc800
huawei te60_firmware v500r002c00spc700
huawei te60_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc300
huawei te30_firmware v500r002c00spc900
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei tp3206_firmware v100r002c10
huawei te40_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc200b010
huawei dp300_firmware v500r002c00spc500
huawei te60_firmware v500r002c00spc300
huawei tp3106_firmware v100r002c00spc400
huawei tp3106_firmware v100r002c00spc200
huawei te60_firmware v500r002c00spc200
huawei te30_firmware v500r002c00spc600
huawei te60_firmware v600r006c00spc200
huawei te60_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei rp200_firmware v500r002c00spc200
huawei te60_firmware v500r002c00spcd00
huawei te40_firmware v500r002c00spc900
huawei te40_firmware v600r006c00
huawei te60_firmware v100r001c10spc500
huawei tp3206_firmware v100r002c00spc600
huawei tp3206_firmware v100r002c00spc400
huawei te50_firmware v600r006c00spc200
huawei viewpoint_9030_firmware v100r011c02spc100
huawei te50_firmware v500r002c00spcb00
huawei espace_u1981_firmware v100r001c20spc700
huawei tp3206_firmware v100r002c00
huawei dp300_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03b012sp16
huawei dp300_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03spc500
huawei viewpoint_9030_firmware v100r011c03spc400
huawei te60_firmware v100r001c10spc300
huawei viewpoint_9030_firmware v100r011c03b015sp03
huawei espace_u1960_firmware v200r003c30spc200
huawei tp3206_firmware v100r002c00spc200
huawei te50_firmware v500r002c00spc700
CVE-2017-17144 MEDIUM

Backup feature of SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC300T; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00T; TE30 V100R001C10; V100R001C10SPC100; V100R001C10SPC200B010; V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V100R001C10SPC800; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; TE60 V100R001C01SPC100; V100R001C01SPC107TB010; V100R001C10; V100R001C10SPC300; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800; V100R001C10SPC900; V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300; TP3106 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C00SPC800; TP3206 V100R002C00; V100R002C00SPC200; V100R002C00SPC400; V100R002C00SPC600; V100R002C00SPC700; V100R002C10; ViewPoint 9030 V100R011C02SPC100; V100R011C03B012SP15; V100R011C03B012SP16; V100R011C03B015SP03; V100R011C03LGWL01SPC100; V100R011C03SPC100; V100R011C03SPC200; V100R011C03SPC300; V100R011C03SPC400; V100R011C03SPC500; eSpace U1960 V200R003C30SPC200; eSpace U1981 V100R001C20SPC700; V200R003C20SPCa00 has an overflow vulnerability when the module process a specific amount of state. The module cannot handle it causing SIP module DoS.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v500r002c00spc700
huawei viewpoint_9030_firmware v100r011c03spc300
huawei rp200_firmware v600r006c00spc200
huawei te60_firmware v500r002c00spca00
huawei tp3106_firmware v100r002c00spc700
huawei te60_firmware v100r001c10spc800
huawei te40_firmware v600r006c00spc200
huawei espace_u1981_firmware v200r003c20spca00
huawei tp3206_firmware v100r002c00spc700
huawei te60_firmware v100r001c10spc700
huawei viewpoint_9030_firmware v100r011c03spc200
huawei tp3106_firmware v100r002c00spc800
huawei te60_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100
huawei te30_firmware v100r001c10spc300
huawei rse6500_firmware v500r002c00spc200
huawei dp300_firmware v500r002c00spc900
huawei rse6500_firmware v500r002c00spc500
huawei dp300_firmware v500r002c00spc100
huawei te30_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03spc100
huawei rse6500_firmware v500r002c00t
huawei rse6500_firmware v500r002c00spc700
huawei te60_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc100
huawei te60_firmware v600r006c00spc100
huawei tp3106_firmware v100r002c00
huawei rse6500_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03b012sp15
huawei dp300_firmware v500r002c00spca00
huawei te30_firmware v500r002c00spcb00
huawei rse6500_firmware v500r002c00spc300t
huawei te30_firmware v100r001c10spc600
huawei te60_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc500
huawei te60_firmware v100r001c01spc107tb010
huawei rse6500_firmware v500r002c00spc100
huawei te50_firmware v600r006c00
huawei rse6500_firmware v500r002c00spc300
huawei te60_firmware v100r001c01spc100
huawei tp3106_firmware v100r002c00spc600
huawei te30_firmware v100r001c10spc100
huawei rp200_firmware v600r006c00
huawei te60_firmware v500r002c00spc900
huawei te30_firmware v500r002c00spc500
huawei te40_firmware v500r002c00spc700
huawei te30_firmware v100r001c10spc800
huawei te40_firmware v500r002c00spcb00
huawei te60_firmware v100r001c10spc400
huawei dp300_firmware v500r002c00
huawei te30_firmware v100r001c10spc700b010
huawei te60_firmware v600r006c00spc300
huawei te30_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc900
huawei dp300_firmware v500r002c00spc800
huawei te60_firmware v500r002c00spc700
huawei te60_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc300
huawei te30_firmware v500r002c00spc900
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei tp3206_firmware v100r002c10
huawei te40_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc200b010
huawei dp300_firmware v500r002c00spc500
huawei te60_firmware v500r002c00spc300
huawei tp3106_firmware v100r002c00spc400
huawei tp3106_firmware v100r002c00spc200
huawei te60_firmware v500r002c00spc200
huawei te30_firmware v500r002c00spc600
huawei te60_firmware v600r006c00spc200
huawei te60_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei rp200_firmware v500r002c00spc200
huawei te60_firmware v500r002c00spcd00
huawei te40_firmware v500r002c00spc900
huawei te40_firmware v600r006c00
huawei te60_firmware v100r001c10spc500
huawei tp3206_firmware v100r002c00spc600
huawei tp3206_firmware v100r002c00spc400
huawei te50_firmware v600r006c00spc200
huawei viewpoint_9030_firmware v100r011c02spc100
huawei te50_firmware v500r002c00spcb00
huawei espace_u1981_firmware v100r001c20spc700
huawei tp3206_firmware v100r002c00
huawei dp300_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03b012sp16
huawei dp300_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei viewpoint_9030_firmware v100r011c03spc500
huawei viewpoint_9030_firmware v100r011c03spc400
huawei te60_firmware v100r001c10spc300
huawei viewpoint_9030_firmware v100r011c03b015sp03
huawei espace_u1960_firmware v200r003c30spc200
huawei tp3206_firmware v100r002c00spc200
huawei te50_firmware v500r002c00spc700
CVE-2017-17145 LOW

Huawei Honor V9 Play smart phones with the versions before Jimmy-AL00AC00B135 have an authentication bypass vulnerability due to the improper design of a component. An attacker who get a user's smart phone can execute specific operation, and delete the fingerprint of the phone without authentication.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_v9_play_firmware *
CVE-2017-17146 HIGH

Huawei DP300 V500R002C00 have a buffer overflow vulnerability due to the lack of validation. An authenticated local attacker can craft specific XML files to the affected products and parse this file, which result in DoS attacks or remote code execution on the device.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei dp300_firmware *
CVE-2017-17147 MEDIUM

Huawei DP300 V500R002C00 have an integer overflow vulnerability due to the lack of validation. An authenticated local attacker can craft specific XML files to the affected products and parse this file, which result in DoS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei dp300_firmware *
CVE-2017-17148 MEDIUM

Huawei DP300 V500R002C00 have a DoS vulnerability due to the lack of validation when the malloc is called. An authenticated local attacker can craft specific XML files to the affected products and parse this file, which result in DoS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei dp300_firmware *
CVE-2017-17149 LOW

Huawei HiWallet App with the versions before 8.0.4 has an arbitrary lock pattern change vulnerability. It needs to verify the user's Huawei ID during lock pattern change. An attacker with root privilege who gets a user's smart phone may bypass Huawei ID verification by special operation. Successful exploit of this vulnerability can allow an attacker to change the lock pattern of HiWallet.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei hiwallet *
CVE-2017-17150 LOW

Timergrp module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an DoS vulnerability due to insufficient validation of the parameter. An authenticated local attacker may call a special API with special parameter, which cause an infinite loop. Successful exploit of this vulnerability can allow an attacker to launch DOS attack.

CVSS 2.0

Severity: LOW

Problem Type: CWE-835,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17151 MEDIUM

Huawei AR100, AR100-S, AR110-S, AR120, AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR510, DP300, NetEngine16EX, RP200, SRG1300, SRG2300, SRG3300, TE30, TE40, TE50, TE60, TP3106, TP3206, ViewPoint 8660, and ViewPoint 9030 have an insufficient validation vulnerability. Since packet validation is insufficient, an unauthenticated attacker may send special H323 packets to exploit the vulnerability. Successful exploit could allow the attacker to send malicious packets and result in DOS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei viewpoint_8660_firmware v100r008c03spc500
huawei te60_firmware v500r002c00spca00
huawei ar160_firmware v200r008c20spc501t
huawei ar2200_firmware v200r007c00pwe
huawei srg1300_firmware v200r006c10
huawei dp300_firmware v500r002c00spc100
huawei te30_firmware v100r001c10
huawei ar120_firmware v200r007c00
huawei viewpoint_9030_firmware v100r011c03spc100
huawei ar150_firmware v200r007c02
huawei ar120-s_firmware v200r007c00spcb00
huawei srg2300_firmware v200r007c00spc600
huawei ar1200_firmware v200r007c00
huawei ar2200_firmware v200r007c00spc200
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei tp3106_firmware v100r002c00b026
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar120_firmware v200r007c00spcb00
huawei viewpoint_9030_firmware v100r011c03b012sp15
huawei ar160_firmware v200r007c00spc500
huawei te30_firmware v500r002c00spcb00
huawei ar200_firmware v200r007c00
huawei ar3200_firmware v200r007c00spc200
huawei ar2200_firmware v200r006c10spc600
huawei ar2200-s_firmware v200r007c00spc600
huawei ar3200_firmware v200r008c30b020
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei ar120_firmware v200r006c10spc300pwe
huawei ar150_firmware v200r008c20spc800
huawei tp3106_firmware v100r002c00b028
huawei ar200-s_firmware v200r007c00spc900
huawei srg3300_firmware v200r008c20
huawei ar200_firmware v200r007c00spc600
huawei te60_firmware v100r001c10spc400
huawei ar2200_firmware v200r007c01
huawei ar200-s_firmware v200r007c00spcb00
huawei ar3200_firmware v200r008c20spc700
huawei te30_firmware v500r002c00spc200
huawei ar120_firmware v200r008c30
huawei ar200_firmware v200r008c20spc800
huawei dp300_firmware v500r002c00spc800
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar150_firmware v200r006c10pwe
huawei te30_firmware v500r002c00spc900
huawei ar2200_firmware v200r007c00spc900pwe
huawei te60_firmware v600r006c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar110-s_firmware v200r007c00spc600
huawei ar160_firmware v200r006c10spc600
huawei ar150_firmware v200r007c00spc900pwe
huawei ar200-s_firmware v200r007c00
huawei ar2200_firmware v200r008c20spc600
huawei ar160_firmware v200r007c00
huawei ar3200_firmware v200r007c00spc600
huawei te30_firmware v500r002c00spc600
huawei ar3200_firmware v200r006c10spc300pwe
huawei te60_firmware v500r002c00
huawei viewpoint_8660_firmware v100r008c03spc100b010
huawei ar1200_firmware v200r008c20spc700
huawei te40_firmware v500r002c00spc900
huawei ar100-s_firmware v200r007c00spca00
huawei ar510_firmware v200r006c17
huawei ar3200_firmware v200r006c10pwe
huawei ar100_firmware v200r008c20spc800pwe
huawei ar100_firmware v200r008c20spc700
huawei tp3206_firmware v100r002c00
huawei ar120_firmware v200r007c00spc600pwe
huawei ar120_firmware v200r007c01
huawei ar200_firmware v200r007c00spc600pwe
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei srg2300_firmware v200r007c00spc200
huawei ar120_firmware v200r008c20spc800
huawei ar2200_firmware v200r007c00spc900
huawei ar200_firmware v200r007c00spc900pwe
huawei srg3300_firmware v200r007c00spc600
huawei ar200_firmware v200r008c30
huawei tp3206_firmware v100r002c00spc200
huawei ar120_firmware v200r007c00pwe
huawei ar1200_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r008c20
huawei ar510_firmware v200r006c12
huawei ar200_firmware v200r006c10spc300pwe
huawei srg1300_firmware v200r007c00spcb00
huawei ar150_firmware v200r007c00spc200
huawei te60_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03spc700
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei ar1200-s_firmware v200r008c20spc700
huawei viewpoint_9030_firmware v100r011c02spc100b010
huawei ar120-s_firmware v200r006c10spc300
huawei te60_firmware v500r002c00spcb00
huawei ar1200_firmware v200r006c10spc030
huawei te60_firmware v100r001c10spc502t
huawei te60_firmware v500r002c00spc100
huawei ar200_firmware v200r008c20spc700
huawei ar150_firmware v200r007c00spc100
huawei ar3200_firmware v200r007c00spc510t
huawei netengine16ex_firmware v200r006c10spc300
huawei ar150-s_firmware v200r008c20spc800
huawei ar150-s_firmware v200r007c00
huawei ar510_firmware v200r007c00spcb00
huawei ar200_firmware v200r008c20spc600
huawei ar200_firmware v200r008c20
huawei ar1200_firmware v200r007c00spc600pwe
huawei ar100-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00spc100
huawei ar160_firmware v200r007c00spc100
huawei ar150_firmware v200r007c00spc600
huawei ar2200-s_firmware v200r007c00
huawei ar1200_firmware v200r007c00spcb00
huawei ar510_firmware v200r007c00spc180t
huawei srg3300_firmware v200r007c00spc200
huawei ar1200-s_firmware v200r008c20spc800
huawei tp3106_firmware v100r002c00spc600
huawei te30_firmware v100r001c10spc800
huawei dp300_firmware v500r002c00
huawei ar100_firmware v200r008c20spc800
huawei ar2200_firmware v200r008c20
huawei ar1200_firmware v200r006c10pwe
huawei te60_firmware v500r002c00spc700
huawei ar3200_firmware v200r007c00spc500
huawei ar120-s_firmware v200r007c00spc200
huawei srg2300_firmware v200r006c10spc300
huawei tp3106_firmware v100r002c00b029
huawei ar120_firmware v200r007c00spc600
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei te40_firmware v500r002c00spc600
huawei ar1200_firmware v200r006c10spc300pwe
huawei ar3200_firmware v200r008c30spc067t
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r007c00spcc00
huawei ar3200_firmware v200r007c00spc900
huawei ar3200_firmware v200r007c00pwe
huawei viewpoint_8660_firmware v100r008c03spc200t
huawei ar3200_firmware v200r008c30b030
huawei tp3106_firmware v100r002c00spc100b022sp01
huawei ar2200_firmware v200r008c20spc800
huawei ar150_firmware v200r007c01
huawei ar2200-s_firmware v200r007c00spc100
huawei te40_firmware v600r006c00
huawei ar2200_firmware v200r007c00spc600pwe
huawei tp3206_firmware v100r002c00spc600
huawei ar1200_firmware v200r007c01
huawei ar200_firmware v200r008c20spc900pwe
huawei ar160_firmware v200r008c30
huawei ar3200_firmware v200r008c20b560
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei srg1300_firmware v200r007c00spc900
huawei ar510_firmware v200r008c20
huawei ar1200_firmware v200r007c00spc200
huawei tp3106_firmware v100r002c00spc100b024
huawei srg3300_firmware v200r008c30
huawei ar150_firmware v200r007c00spc600pwe
huawei ar160_firmware v200r008c20spc600
huawei ar200-s_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b012sp16
huawei ar2200_firmware v200r006c10pwe
huawei ar2200-s_firmware v200r007c00spc900
huawei ar510_firmware v200r007c00spc900
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar150-s_firmware v200r007c00spcb00
huawei viewpoint_9030_firmware v100r011c03spc100b011
huawei ar2200_firmware v200r006c16pwe
huawei ar1200_firmware v200r006c10spc600
huawei ar1200_firmware v200r008c20spc800
huawei tp3106_firmware v100r002c00t
huawei ar3200_firmware v200r007c00spc900pwe
huawei ar3200_firmware v200r006c10spc300
huawei te60_firmware v100r001c10spc800
huawei ar3200_firmware v200r008c20spc800
huawei te60_firmware v100r001c10spc700
huawei ar150_firmware v200r008c20
huawei ar200_firmware v200r006c10spc100
huawei srg3300_firmware v200r007c00spcb00
huawei te30_firmware v100r001c10spc300
huawei ar200_firmware v200r006c10pwe
huawei ar1200_firmware v200r007c00spc900pwe
huawei srg3300_firmware v200r007c00spc100
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar150_firmware v200r008c20spc700
huawei ar200_firmware v200r007c00spc200
huawei viewpoint_8660_firmware v100r008c03spc100
huawei ar3200_firmware v200r008c30b010
huawei ar120-s_firmware v200r007c00spc100
huawei ar200-s_firmware v200r008c20spc700
huawei ar2200_firmware v200r006c13
huawei ar3200_firmware v200r007c00spc600pwe
huawei ar160_firmware v200r006c10spc300pwe
huawei srg2300_firmware v200r007c02
huawei ar100-s_firmware v200r008c20spc700
huawei viewpoint_8660_firmware v100r008c03spc800
huawei ar160_firmware v200r007c02
huawei srg3300_firmware v200r006c10spc300
huawei ar150-s_firmware v200r008c30
huawei ar160_firmware v200r008c20spc700
huawei ar1200_firmware v200r007c00spca00
huawei netengine16ex_firmware v200r007c00spc200
huawei ar150-s_firmware v200r007c00spc600
huawei te60_firmware v500r002c00spc900
huawei ar160_firmware v200r007c00pwe
huawei te40_firmware v500r002c00spcb00
huawei ar3200_firmware v200r007c00spca00
huawei viewpoint_8660_firmware v100r008c03spc400
huawei ar110-s_firmware v200r007c00spcb00
huawei ar160_firmware v200r006c10spc200
huawei ar3200_firmware v200r006c10spc600
huawei te30_firmware v100r001c02spc200
huawei te60_firmware v100r001c10spc900
huawei ar510_firmware v200r006c10pwe
huawei ar2200-s_firmware v200r008c20spc700
huawei te60_firmware v500r002c00spc800
huawei ar120_firmware v200r007c00spc900
huawei ar3200_firmware v200r008c20b580
huawei ar2200_firmware v200r007c00spc600
huawei ar1200_firmware v200r008c20
huawei ar510_firmware v200r006c16
huawei ar150_firmware v200r007c00spcb00pwe
huawei ar1200-s_firmware v200r007c00spcb00
huawei ar160_firmware v200r007c00spc600pwe
huawei viewpoint_8660_firmware v100r008c03spc600
huawei ar100-s_firmware v200r008c20spc800
huawei viewpoint_8660_firmware v100r008c03spc100b011
huawei ar2200-s_firmware v200r007c00spcb00
huawei ar160_firmware v200r007c00spc200
huawei ar3200_firmware v200r007c00spcb00
huawei ar2200-s_firmware v200r007c00spc200
huawei viewpoint_8660_firmware v100r008c03b013sp03
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r006c10spc100
huawei viewpoint_8660_firmware v100r008c03b013sp02
huawei ar160_firmware v200r007c00spcb00
huawei srg1300_firmware v200r007c00spc600
huawei ar3200_firmware v200r006c10spc200
huawei ar200-s_firmware v200r008c30
huawei te60_firmware v500r002c00spc200
huawei ar150_firmware v200r007c00spcb00
huawei ar1200-s_firmware v200r007c00spc600
huawei netengine16ex_firmware v200r007c00spc600
huawei tp3106_firmware v100r001c06b020
huawei ar3200_firmware v200r008c10
huawei rp200_firmware v500r002c00spc200
huawei ar1200_firmware v200r007c00spcb00pwe
huawei srg3300_firmware v200r007c00spc900
huawei srg1300_firmware v200r007c00spc100
huawei ar120_firmware v200r007c00spcb00pwe
huawei ar1200_firmware v200r007c00pwe
huawei tp3206_firmware v100r002c00spc400
huawei ar150_firmware v200r008c30
huawei ar2200_firmware v200r007c00spcb00pwe
huawei ar160_firmware v200r006c10spc300
huawei ar3200_firmware v200r007c00spcb00pwe
huawei ar150_firmware v200r007c00spc900
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei ar1200-s_firmware v200r008c20spc800pwe
huawei ar150-s_firmware v200r008c20spc700
huawei tp3106_firmware v100r002c00spc100b022
huawei ar100-s_firmware v200r008c20spc800pwe
huawei ar120-s_firmware v200r007c00spc900
huawei viewpoint_8660_firmware v100r008c03spcc00
huawei ar150_firmware v200r006c10spc300pwe
huawei ar2200_firmware v200r007c00spca00
huawei ar1200_firmware v200r008c20spc600
huawei netengine16ex_firmware v200r007c00spcb00
huawei ar1200-s_firmware v200r007c00spc100
huawei ar110-s_firmware v200r007c00spc900
huawei ar2200-s_firmware v200r008c20spc800
huawei ar1200-s_firmware v200r007c00spc200
huawei ar1200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc400
huawei ar3200_firmware v200r008c30b070
huawei srg1300_firmware v200r008c30
huawei ar3200_firmware v200r008c30b050
huawei te30_firmware v100r001c02spc100
huawei viewpoint_8660_firmware v100r008c03spc600t
huawei ar1200-s_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b015sp03
huawei te50_firmware v500r002c00spc700
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei ar150-s_firmware v200r007c00spc100
huawei ar3200_firmware v200r008c20b570
huawei ar120_firmware v200r008c20
huawei te30_firmware v500r002c00spc700
huawei ar150_firmware v200r007c00
huawei viewpoint_9030_firmware v100r011c03spc300
huawei ar2200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc200
huawei ar120-s_firmware v200r007c00spca00
huawei ar1200-s_firmware v200r006c10spc300
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100
huawei ar2200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20spc800
huawei dp300_firmware v500r002c00spc900
huawei netengine16ex_firmware v200r008c20spc800
huawei ar120_firmware v200r007c00spc200
huawei ar200-s_firmware v200r006c10spc300
huawei ar510_firmware v200r006c13
huawei ar160_firmware v200r008c20spc800
huawei ar3200_firmware v200r007c00spc100
huawei viewpoint_8660_firmware v100r008c03spc200
huawei ar110-s_firmware v200r008c30
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100b012
huawei ar120_firmware v200r008c20spc700
huawei ar2200-s_firmware v200r006c10spc300
huawei ar120_firmware v200r006c10spc300
huawei ar3200_firmware v200r007c00
huawei ar120-s_firmware v200r008c20spc800
huawei srg2300_firmware v200r007c00spcb00
huawei viewpoint_9030_firmware v100r011c03spc100b010
huawei te30_firmware v100r001c10spc600
huawei ar1200_firmware v200r007c02
huawei te60_firmware v500r002c00spc600
huawei viewpoint_8660_firmware v100r008c03spcb00
huawei ar100-s_firmware v200r007c00spcb00
huawei ar150-s_firmware v200r007c00spc900
huawei ar200_firmware v200r007c00spcb00pwe
huawei ar100_firmware v200r008c20spc700pwe
huawei viewpoint_8660_firmware v100r008c03spc300
huawei ar200_firmware v200r007c00spc100
huawei tp3106_firmware v100r002c00spc100b025
huawei te60_firmware v100r001c01spc100
huawei te30_firmware v100r001c10spc100
huawei te40_firmware v500r002c00spc700
huawei ar120_firmware v200r006c10
huawei ar2200-s_firmware v200r008c20spc800pwe
huawei ar3200_firmware v200r006c10spc100
huawei netengine16ex_firmware v200r008c20spc700
huawei ar160_firmware v200r008c20
huawei dp300_firmware v500r002c00spc300
huawei ar200_firmware v200r007c00spcb00
huawei ar200_firmware v200r007c01
huawei srg2300_firmware v200r007c00spc900
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar120_firmware v200r007c00spc100
huawei tp3106_firmware v100r002c00b027
huawei ar510_firmware v200r006c15
huawei srg1300_firmware v200r006c10spc300
huawei dp300_firmware v500r002c00spc500
huawei viewpoint_8660_firmware v100r008c03b013sp04
huawei ar120-s_firmware v200r007c00spc600
huawei ar1200_firmware v200r007c00spc600
huawei ar200_firmware v200r007c00spc900
huawei tp3106_firmware v100r002c00spc400
huawei ar160_firmware v200r007c01
huawei tp3106_firmware v100r002c00spc200
huawei ar3200_firmware v200r008c30
huawei ar150_firmware v200r007c00pwe
huawei srg1300_firmware v200r007c00spc200
huawei ar2200_firmware v200r007c00spcb00
huawei srg2300_firmware v200r007c00spc100
huawei tp3106_firmware v100r002c00spc100b023
huawei tp3106_firmware v100r002c00spc101t
huawei ar1200-s_firmware v200r007c00
huawei ar160_firmware v200r007c00spc900pwe
huawei viewpoint_8660_firmware v100r008c03spc900
huawei ar160_firmware v200r007c00spc900
huawei dp300_firmware v500r002c00spc400
huawei ar200-s_firmware v200r007c00spc600
huawei ar100-s_firmware v200r008c30
huawei ar160_firmware v200r008c30spc100
huawei ar2200_firmware v200r006c10spc300
huawei ar2200_firmware v200r006c10spc300pwe
huawei ar150-s_firmware v200r007c00spc200
huawei ar3200_firmware v200r008c30b060
huawei viewpoint_9030_firmware v100r011c03spc100b012
huawei netengine16ex_firmware v200r007c00spc100
huawei ar200_firmware v200r006c10spc300
huawei ar2200_firmware v200r008c30
huawei viewpoint_9030_firmware v100r011c02spc100
huawei ar200-s_firmware v200r006c10
huawei ar1200_firmware v200r007c00spc900
huawei ar510_firmware v200r006c10spc200
huawei te50_firmware v500r002c00spcb00
huawei netengine16ex_firmware v200r007c00spc900
huawei dp300_firmware v500r002c00spc600
huawei ar150_firmware v200r007c02pwe
huawei ar160_firmware v200r006c10pwe
huawei te60_firmware v100r001c10b010
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar1200_firmware v200r007c00spc100
huawei dp300_firmware v500r002c00spc200
huawei ar200-s_firmware v200r007c00spc200
huawei ar2200_firmware v200r007c00spc100
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei ar120_firmware v200r007c00spc900pwe
huawei ar160_firmware v200r007c00spcb00pwe
huawei ar160_firmware v200r008c20spc500t
huawei ar200_firmware v200r007c00pwe
huawei ar150_firmware v200r006c10spc300
huawei viewpoint_9030_firmware v100r011c03spc500
huawei ar1200-s_firmware v200r007c00spc900
huawei ar510_firmware v200r007c00spc600
huawei ar2200_firmware v200r007c00spc500
huawei viewpoint_8660_firmware v100r008c03spca00
huawei ar120-s_firmware v200r008c20spc700
huawei ar160_firmware v200r006c12
huawei ar100_firmware v200r008c30
huawei ar2200_firmware v200r008c20spc700
huawei te60_firmware v100r001c10spc300
huawei ar1200_firmware v200r006c13
huawei ar200_firmware v200r008c20spc900
huawei ar3200_firmware v200r008c30b080
huawei ar160_firmware v200r007c00spc600
huawei ar110-s_firmware v200r008c20spc800
CVE-2017-17152 MEDIUM

IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NGFW Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6600 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, Secospace USG6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6600 V500R001C00, V500R001C00SPC100, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC301, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200PWE, V500R001C20SPC300, V500R001C20SPC300B078, V500R001C20SPC300PWE, USG9500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC303, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE has an out-of-bounds write vulnerability due to insufficient input validation. An attacker could exploit it to craft special packets to trigger out-of-bounds memory write, which may further lead to system exceptions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-787,

Products Affected

Vendor Product Version
huawei ips_module_firmware v500r001c00spc300
huawei secospace_usg6600_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c00spc500pwe
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei nip6300_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc100
huawei usg9500_firmware v500r001c20spc300pwe
huawei ngfw_module_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ips_module_firmware v500r001c00
huawei nip6600_firmware v500r001c00spc200
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00spc500pwe
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei ngfw_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg9500_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00
huawei nip6600_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc200b062
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c00
huawei ngfw_module_firmware v500r001c20spc300pwe
huawei ips_module_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00sph303
huawei usg9500_firmware v500r001c00
huawei nip6600_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c00sph508
huawei ngfw_module_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc100pwe
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc303
huawei nip6600_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c00spc500
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei ngfw_module_firmware v500r001c20spc300b078
huawei nip6300_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c00spc301
huawei secospace_usg6600_firmware v500r001c20spc101
huawei ngfw_module_firmware v500r001c00spc300
huawei ips_module_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c00spc300
huawei usg9500_firmware v500r001c00sph303
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c00spc300
huawei nip6300_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17153 MEDIUM

IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NGFW Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6600 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, Secospace USG6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6600 V500R001C00, V500R001C00SPC100, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC301, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200PWE, V500R001C20SPC300, V500R001C20SPC300B078, V500R001C20SPC300PWE, USG9500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC303, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE has a memory leak vulnerability due to memory release failure resulted from insufficient input validation. An attacker could exploit it to cause memory leak, which may further lead to system exceptions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-772,

Products Affected

Vendor Product Version
huawei ips_module_firmware v500r001c00spc300
huawei secospace_usg6600_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c00spc500pwe
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei nip6300_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc100
huawei usg9500_firmware v500r001c20spc300pwe
huawei ngfw_module_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ips_module_firmware v500r001c00
huawei nip6600_firmware v500r001c00spc200
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00spc500pwe
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei ngfw_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg9500_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00
huawei nip6600_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc200b062
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c00
huawei ngfw_module_firmware v500r001c20spc300pwe
huawei ips_module_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00sph303
huawei usg9500_firmware v500r001c00
huawei nip6600_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c00sph508
huawei ngfw_module_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc100pwe
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc303
huawei nip6600_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c00spc500
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei ngfw_module_firmware v500r001c20spc300b078
huawei nip6300_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c00spc301
huawei secospace_usg6600_firmware v500r001c20spc101
huawei ngfw_module_firmware v500r001c00spc300
huawei ips_module_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c00spc300
huawei usg9500_firmware v500r001c00sph303
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c00spc300
huawei nip6300_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17154 MEDIUM

IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NGFW Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6600 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, Secospace USG6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6600 V500R001C00, V500R001C00SPC100, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC301, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200PWE, V500R001C20SPC300, V500R001C20SPC300B078, V500R001C20SPC300PWE, USG9500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC303, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE has a DoS vulnerability due to insufficient input validation. An attacker could exploit it to cause unauthorized memory access, which may further lead to system exceptions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ips_module_firmware v500r001c00spc300
huawei secospace_usg6600_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c00spc500pwe
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei nip6300_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc100
huawei usg9500_firmware v500r001c20spc300pwe
huawei ngfw_module_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ips_module_firmware v500r001c00
huawei nip6600_firmware v500r001c00spc200
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00spc500pwe
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei ngfw_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg9500_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00
huawei nip6600_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc200b062
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c00
huawei ngfw_module_firmware v500r001c20spc300pwe
huawei ips_module_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00sph303
huawei usg9500_firmware v500r001c00
huawei nip6600_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c00sph508
huawei ngfw_module_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc100pwe
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc303
huawei nip6600_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c00spc500
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei ngfw_module_firmware v500r001c20spc300b078
huawei nip6300_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c00spc301
huawei secospace_usg6600_firmware v500r001c20spc101
huawei ngfw_module_firmware v500r001c00spc300
huawei ips_module_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c00spc300
huawei usg9500_firmware v500r001c00sph303
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c00spc300
huawei nip6300_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17155 MEDIUM

IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NGFW Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6600 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, Secospace USG6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6600 V500R001C00, V500R001C00SPC100, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC301, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200PWE, V500R001C20SPC300, V500R001C20SPC300B078, V500R001C20SPC300PWE, USG9500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC303, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE has an out-of-bounds memory access vulnerability due to incompliance with the 4-byte alignment requirement imposed by the MIPS CPU. An attacker could exploit it to cause unauthorized memory access, which may further lead to system exceptions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei ips_module_firmware v500r001c00spc300
huawei secospace_usg6600_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c00spc500pwe
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei nip6300_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc100
huawei usg9500_firmware v500r001c20spc300pwe
huawei ngfw_module_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ips_module_firmware v500r001c00
huawei nip6600_firmware v500r001c00spc200
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00spc500pwe
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei ngfw_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg9500_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00
huawei nip6600_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc200b062
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c00
huawei ngfw_module_firmware v500r001c20spc300pwe
huawei ips_module_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00sph303
huawei usg9500_firmware v500r001c00
huawei nip6600_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c00sph508
huawei ngfw_module_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc100pwe
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc303
huawei nip6600_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c00spc500
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei ngfw_module_firmware v500r001c20spc300b078
huawei nip6300_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c00spc301
huawei secospace_usg6600_firmware v500r001c20spc101
huawei ngfw_module_firmware v500r001c00spc300
huawei ips_module_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c00spc300
huawei usg9500_firmware v500r001c00sph303
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c00spc300
huawei nip6300_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17156 MEDIUM

IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NGFW Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6600 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, Secospace USG6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6600 V500R001C00, V500R001C00SPC100, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC301, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200PWE, V500R001C20SPC300, V500R001C20SPC300B078, V500R001C20SPC300PWE, USG9500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC303, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE has an out-of-bounds memory access vulnerability due to insufficient input validation. An attacker could exploit it to craft special packets to trigger out-of-bounds memory access, which may further lead to system exceptions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ips_module_firmware v500r001c00spc300
huawei secospace_usg6600_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c00spc500pwe
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei nip6300_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc100
huawei usg9500_firmware v500r001c20spc300pwe
huawei ngfw_module_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ips_module_firmware v500r001c00
huawei nip6600_firmware v500r001c00spc200
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00spc500pwe
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei ngfw_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg9500_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00
huawei nip6600_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc200b062
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c00
huawei ngfw_module_firmware v500r001c20spc300pwe
huawei ips_module_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00sph303
huawei usg9500_firmware v500r001c00
huawei nip6600_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c00sph508
huawei ngfw_module_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc100pwe
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc303
huawei nip6600_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c00spc500
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei ngfw_module_firmware v500r001c20spc300b078
huawei nip6300_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c00spc301
huawei secospace_usg6600_firmware v500r001c20spc101
huawei ngfw_module_firmware v500r001c00spc300
huawei ips_module_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c00spc300
huawei usg9500_firmware v500r001c00sph303
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c00spc300
huawei nip6300_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17157 MEDIUM

IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NGFW Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6600 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, Secospace USG6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6600 V500R001C00, V500R001C00SPC100, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC301, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200PWE, V500R001C20SPC300, V500R001C20SPC300B078, V500R001C20SPC300PWE, USG9500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC303, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE has an out-of-bounds memory access vulnerability due to insufficient input validation. An attacker could exploit it to craft special packets to trigger out-of-bounds memory access, which may further lead to system exceptions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ips_module_firmware v500r001c00spc300
huawei secospace_usg6600_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c00spc500pwe
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei nip6300_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc100
huawei usg9500_firmware v500r001c20spc300pwe
huawei ngfw_module_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c20spc200
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ips_module_firmware v500r001c00
huawei nip6600_firmware v500r001c00spc200
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00spc500pwe
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei usg9500_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei ngfw_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg9500_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc300b078
huawei ngfw_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00
huawei nip6600_firmware v500r001c20spc200b062
huawei ips_module_firmware v500r001c20spc200b062
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c00
huawei ngfw_module_firmware v500r001c20spc300pwe
huawei ips_module_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c20spc101
huawei secospace_usg6300_firmware v500r001c00sph303
huawei usg9500_firmware v500r001c00
huawei nip6600_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c00sph508
huawei ngfw_module_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph303
huawei ips_module_firmware v500r001c20spc100
huawei usg9500_firmware v500r001c20spc100pwe
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c20
huawei ips_module_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c00spc200
huawei usg9500_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20spc200
huawei ngfw_module_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c00spc200
huawei ngfw_module_firmware v500r001c00sph303
huawei nip6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c00spc500
huawei usg9500_firmware v500r001c00spc303
huawei nip6600_firmware v500r001c20spc200
huawei ips_module_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c00spc500
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei ngfw_module_firmware v500r001c20spc300b078
huawei nip6300_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00spc500
huawei ips_module_firmware v500r001c00spc500
huawei secospace_usg6600_firmware v500r001c00spc301
huawei secospace_usg6600_firmware v500r001c20spc101
huawei ngfw_module_firmware v500r001c00spc300
huawei ips_module_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei usg9500_firmware v500r001c00sph508
huawei nip6600_firmware v500r001c20spc100pwe
huawei usg9500_firmware v500r001c00spc300
huawei usg9500_firmware v500r001c00sph303
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei secospace_usg6300_firmware v500r001c00spc300
huawei nip6300_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17158 LOW

Some Huawei smart phones with the versions before Berlin-L21HNC185B381; the versions before Prague-AL00AC00B223; the versions before Prague-AL00BC00B223; the versions before Prague-AL00CC00B223; the versions before Prague-L31C432B208; the versions before Prague-TL00AC01B223; the versions before Prague-TL00AC01B223 have an information exposure vulnerability. When the user's smart phone connects to the malicious device for charging, an unauthenticated attacker may activate some specific function by sending some specially crafted messages. Due to insufficient input validation of the messages, successful exploit may cause information exposure.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei prague-al00b_firmware *
huawei berlin-l21hn_firmware *
huawei prague-tl00a_firmware *
huawei prague-al00a_firmware *
huawei prague-l31_firmware *
huawei prague-al00c_firmware *
huawei prague-tl10a_firmware *
CVE-2017-17159 MEDIUM

Some Huawei smart phones with software of NXT-AL10C00B386, NXT-CL00C92B386, NXT-DL00C17B386, NXT-TL00C01B386SP01, NTS-AL00C00B535 have a DoS vulnerability due to insufficient input validation. An unauthenticated attacker could send malformed System Information(SI) messages to the smart phone within radio range by special wireless device. Successful exploit could make the smart phone restart.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei nts-al00_firmware nts-al00c00b535
huawei mt8-emui4.1_firmware nxt-dl00c17b386
huawei mt8-emui4.1_firmware nxt-al10c00b386
huawei mt8-emui4.1_firmware nxt-tl00c01b386sp01
huawei mt8-emui4.1_firmware nxt-cl00c92b386
CVE-2017-17160 HIGH

Huawei AR120-S V200R006C10, V200R007C00, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C02, AR1200-S V200R006C10, V200R007C00, V200R008C20, AR150 V200R006C10, V200R007C00, V200R007C02, AR150-S V200R006C10, V200R007C00, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C02, AR200 V200R006C10, V200R007C00, AR200-S V200R006C10, V200R007C00, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C02, AR2200-S V200R006C10, V200R007C00, V200R008C20, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C02, AR3600 V200R006C10, V200R007C00, AR510 V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, NetEngine16EX V200R006C10, V200R007C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, SRG2300 V200R006C10, V200R007C00, V200R007C02, SRG3300 V200R006C10, V200R007C00 have a buffer overflow vulnerability due to incomplete range checks of the input data. An unauthenticated, remote attacker could exploit this vulnerability by sending malicious IKE packets to the targeted device. An exploit could allow the attacker to cause the device to write out of bound and restart.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei netengine16ex_firmware v200r007c00
huawei ar150-s_firmware v200r006c10
huawei ar510_firmware v200r006c15
huawei ar3600_firmware v200r007c00
huawei ar510_firmware v200r006c12
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei srg3300_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei ar1200-s_firmware v200r007c00
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei ar510_firmware v200r006c17
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei srg2300_firmware v200r006c10
huawei ar2200-s_firmware v200r007c00
huawei ar3200_firmware v200r007c02
huawei srg3300_firmware v200r007c00
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar510_firmware v200r007c00
huawei ar510_firmware v200r006c16
huawei ar1200_firmware v200r006c13
huawei ar1200-s_firmware v200r006c10
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-17161 HIGH

The 'Find Phone' function in some Huawei smart phones with software earlier than Duke-L09C10B186 versions, earlier than Duke-L09C432B187 versions, earlier than Duke-L09C636B186 versions has an authentication bypass vulnerability. Due to improper authentication realization in the 'Find Phone' function. An attacker may exploit the vulnerability to bypass the 'Find Phone' function in order to use the phone normally.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei duke-l09_firmware *
CVE-2017-17162 LOW

Huawei Secospace USG6600 V500R001C30SPC100, Secospace USG6600 V500R001C30SPC200, Secospace USG6600 V500R001C30SPC300, USG9500 V500R001C30SPC100, USG9500 V500R001C30SPC200, USG9500 V500R001C30SPC300 have a memory leak vulnerability due to memory don't be released when an local authenticated attacker execute special commands many times. An attacker could exploit it to cause memory leak, which may further lead to system exceptions.

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc100
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c30spc100
CVE-2017-17163 LOW

Huawei Secospace USG6600 V500R001C30SPC100 has an Out-of-Bounds memory access vulnerability due to insufficient verification. An authenticated local attacker can make processing crash by executing some commands. The attacker can exploit this vulnerability to cause a denial of service.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30spc100
CVE-2017-17164 MEDIUM

Huawei Secospace AntiDDoS8000 V500R001C20SPC500 have a memory leak vulnerability due to memory don't be released when the system open some function. An attacker could exploit it to cause memory leak, which may further lead to system exceptions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei secospace_antiddos8000_firmware v500r001c20spc500
CVE-2017-17165 HIGH

IPv6 function in Huawei Quidway S2700 V200R003C00SPC300, Quidway S5300 V200R003C00SPC300, Quidway S5700 V200R003C00SPC300, S2300 V200R003C00, V200R003C00SPC300T, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S2700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S5300 V200R003C00, V200R003C00SPC300T, V200R003C00SPC600, V200R003C02, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R005C05, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S5700 V200R003C00, V200R003C00SPC316T, V200R003C00SPC600, V200R003C02, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S600-E V200R008C00, V200R009C00, S6300 V200R003C00, V200R005C00, V200R007C00, V200R008C00, V200R009C00, S6700 V200R003C00, V200R005C00, V200R005C01, V200R005C02, V200R007C00, V200R008C00, V200R009C00 has an out-of-bounds read vulnerability. An unauthenticated attacker may send crafted malformed IPv6 packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause device to reset.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei s6300_firmware v200r005c00
huawei s2300_firmware v200r005c00
huawei quidway_s5300_firmware v200r003c00spc300
huawei s5700_firmware v200r009c00
huawei s5300_firmware v200r003c00spc600
huawei s5300_firmware v200r007c00
huawei s6300_firmware v200r003c00
huawei s6700_firmware v200r005c00
huawei quidway_s2700_firmware v200r003c00spc300
huawei s5300_firmware v200r003c00spc300t
huawei s2300_firmware v200r003c00
huawei s2300_firmware v200r009c00
huawei s5700_firmware v200r003c02
huawei s6300_firmware v200r009c00
huawei s6300_firmware v200r008c00
huawei s5300_firmware v200r009c00
huawei s6700_firmware v200r003c00
huawei s6700_firmware v200r008c00
huawei s2700_firmware v200r005c00
huawei s5300_firmware v200r005c05
huawei s2700_firmware v200r007c00
huawei s5700_firmware v200r005c03
huawei s2300_firmware v200r006c00
huawei s5700_firmware v200r003c00spc600
huawei s5300_firmware v200r005c02
huawei s2700_firmware v200r006c00
huawei quidway_s5700_firmware v200r003c00spc300
huawei s600-e_firmware v200r008c00
huawei s5700_firmware v200r005c02
huawei s5300_firmware v200r005c00
huawei s5300_firmware v200r005c03
huawei s2300_firmware v200r007c00
huawei s2300_firmware v200r003c00spc300t
huawei s5700_firmware v200r007c00
huawei s5300_firmware v200r008c00
huawei s6700_firmware v200r009c00
huawei s2300_firmware v200r008c00
huawei s5700_firmware v200r006c00
huawei s6300_firmware v200r007c00
huawei s5700_firmware v200r008c00
huawei s5300_firmware v200r006c00
huawei s5300_firmware v200r005c01
huawei s6700_firmware v200r005c02
huawei s600-e_firmware v200r009c00
huawei s5300_firmware v200r003c02
huawei s5700_firmware v200r005c00
huawei s6700_firmware v200r005c01
huawei s5700_firmware v200r003c00spc316t
huawei s5300_firmware v200r003c00
huawei s2700_firmware v200r008c00
huawei s5700_firmware v200r005c01
huawei s2700_firmware v200r009c00
huawei s5700_firmware v200r003c00
huawei s6700_firmware v200r007c00
CVE-2017-17166 MEDIUM

Huawei DP300 V500R002C00, Secospace USG6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, TP3206 V100R002C00, VP9660 V500R002C00, V500R002C10 have a resource exhaustion vulnerability. The software does not process certain field of H.323 message properly, a remote unauthenticated attacker could send crafted H.323 message to the device, successful exploit could cause certain service unavailable since the stack memory is exhausted.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50
huawei dp300_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei secospace_usg6500_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c50
huawei vp9660_firmware v500r002c10
huawei vp9660_firmware v500r002c00
huawei secospace_usg6300_firmware v500r001c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17167 MEDIUM

Huawei DP300 V500R002C00; TP3206 V100R002C00; ViewPoint 9030 V100R011C02; V100R011C03 have a use of a broken or risky cryptographic algorithm vulnerability. The software uses risky cryptographic algorithm in SSL. This is dangerous because a remote unauthenticated attacker could use well-known techniques to break the algorithm. Successful exploit could result in the exposure of sensitive information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei dp300_firmware v500r002c00
huawei viewpoint_9030_firmware v100r011c03
huawei tp3206_firmware v100r002c00
huawei viewpoint_9030_firmware v100r011c02
CVE-2017-17168 MEDIUM

The CIDAM Protocol on some Huawei Products has multiple input validation vulnerabilities due to insufficient validation of specific messages when the protocol is implemented. An authenticated remote attacker could send a malicious message to a target system. Successful exploit could allow the attacker to tamper with business and make the system abnormal. Affected Huawei Products are: DP300 versions V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00B012, V500R002C00B013, V500R002C00B014, V500R002C00B017, V500R002C00B018, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC400, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00; RP200 versions V500R002C00SPC200, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE30 versions V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700B010, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE40 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE50 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE60 versions V100R001C10, V100R001C10B001, V100R001C10B002, V100R001C10B010, V100R001C10B011, V100R001C10B012, V100R001C10B013, V100R001C10B014, V100R001C10B016, V100R001C10B017, V100R001C10B018, V100R001C10B019, V100R001C10SPC400, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V100R001C10SPC800B011, V100R001C10SPC900, V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00, V500R002C00SPCb00, V500R002C00SPCd00, V500R002C00SPCe00, V600R006C00, V600R006C00SPC100, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; eSpace U1981 version V200R003C20SPC900.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei dp300_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei dp300_firmware v500r002c00b012
huawei dp300_firmware v500r002c00spc500
huawei dp300_firmware v500r002c00b013
huawei dp300_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc600
huawei dp300_firmware v500r002c00b017
huawei dp300_firmware v500r002c00spc300
huawei dp300_firmware v500r002c00b010
huawei dp300_firmware v500r002c00b018
huawei dp300_firmware v500r002c00spc200
huawei dp300_firmware v500r002c00b011
huawei dp300_firmware v500r002c00spca00
huawei dp300_firmware v500r002c00b014
huawei dp300_firmware v500r002c00spc900
huawei dp300_firmware v500r002c00spc100
CVE-2017-17169 MEDIUM

The CIDAM Protocol on some Huawei Products has multiple input validation vulnerabilities due to insufficient validation of specific messages when the protocol is implemented. An authenticated remote attacker could send a malicious message to a target system. Successful exploit could allow the attacker to tamper with business and make the system abnormal. Affected Huawei Products are: DP300 versions V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00B012, V500R002C00B013, V500R002C00B014, V500R002C00B017, V500R002C00B018, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC400, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00; RP200 versions V500R002C00SPC200, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE30 versions V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700B010, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE40 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE50 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE60 versions V100R001C10, V100R001C10B001, V100R001C10B002, V100R001C10B010, V100R001C10B011, V100R001C10B012, V100R001C10B013, V100R001C10B014, V100R001C10B016, V100R001C10B017, V100R001C10B018, V100R001C10B019, V100R001C10SPC400, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V100R001C10SPC800B011, V100R001C10SPC900, V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00, V500R002C00SPCb00, V500R002C00SPCd00, V500R002C00SPCe00, V600R006C00, V600R006C00SPC100, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; eSpace U1981 version V200R003C20SPC900.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei dp300_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei dp300_firmware v500r002c00b012
huawei dp300_firmware v500r002c00spc500
huawei dp300_firmware v500r002c00b013
huawei dp300_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc600
huawei dp300_firmware v500r002c00b017
huawei dp300_firmware v500r002c00spc300
huawei dp300_firmware v500r002c00b010
huawei dp300_firmware v500r002c00b018
huawei dp300_firmware v500r002c00spc200
huawei dp300_firmware v500r002c00b011
huawei dp300_firmware v500r002c00spca00
huawei dp300_firmware v500r002c00b014
huawei dp300_firmware v500r002c00spc900
huawei dp300_firmware v500r002c00spc100
CVE-2017-17170 MEDIUM

The CIDAM Protocol on some Huawei Products has multiple input validation vulnerabilities due to insufficient validation of specific messages when the protocol is implemented. An authenticated remote attacker could send a malicious message to a target system. Successful exploit could allow the attacker to tamper with business and make the system abnormal. Affected Huawei Products are: DP300 versions V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00B012, V500R002C00B013, V500R002C00B014, V500R002C00B017, V500R002C00B018, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC400, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00; RP200 versions V500R002C00SPC200, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE30 versions V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700B010, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE40 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE50 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE60 versions V100R001C10, V100R001C10B001, V100R001C10B002, V100R001C10B010, V100R001C10B011, V100R001C10B012, V100R001C10B013, V100R001C10B014, V100R001C10B016, V100R001C10B017, V100R001C10B018, V100R001C10B019, V100R001C10SPC400, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V100R001C10SPC800B011, V100R001C10SPC900, V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00, V500R002C00SPCb00, V500R002C00SPCd00, V500R002C00SPCe00, V600R006C00, V600R006C00SPC100, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; eSpace U1981 version V200R003C20SPC900.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei dp300_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei dp300_firmware v500r002c00b012
huawei dp300_firmware v500r002c00spc500
huawei dp300_firmware v500r002c00b013
huawei dp300_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc600
huawei dp300_firmware v500r002c00b017
huawei dp300_firmware v500r002c00spc300
huawei dp300_firmware v500r002c00b010
huawei dp300_firmware v500r002c00b018
huawei dp300_firmware v500r002c00spc200
huawei dp300_firmware v500r002c00b011
huawei dp300_firmware v500r002c00spca00
huawei dp300_firmware v500r002c00b014
huawei dp300_firmware v500r002c00spc900
huawei dp300_firmware v500r002c00spc100
CVE-2017-17171 MEDIUM

Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_8_firmware *
huawei p9_plus_firmware *
huawei p9_firmware *
CVE-2017-17172 MEDIUM

Huawei smart phones LYO-L21 with software LYO-L21C479B107, LYO-L21C479B107 have a privilege escalation vulnerability. An authenticated, local attacker can crafts malformed packets after tricking a user to install a malicious application and exploit this vulnerability when in the exception handling process. Successful exploitation may cause the attacker to obtain a higher privilege of the smart phones.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
huawei lyo-l21 *
CVE-2017-17173 HIGH

Due to insufficient parameters verification GPU driver of Mate 9 Pro Huawei smart phones with the versions before LON-AL00B 8.0.0.356(C00) has an arbitrary memory free vulnerability. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to driver to release special kernel memory resource. Successful exploit may result in phone crash or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_9_pro_fimware *
CVE-2017-17174 MEDIUM

Some Huawei products RSE6500 V500R002C00; SoftCo V200R003C20SPCb00; VP9660 V600R006C10; eSpace U1981 V100R001C20; V200R003C20; V200R003C30; V200R003C50 have a weak algorithm vulnerability. To exploit the vulnerability, a remote, unauthenticated attacker has to capture TLS traffic between clients and the affected products. The attacker may launch the Bleichenbacher attack on RSA key exchange to decrypt the session key and the previously captured sessions by some cryptanalytic operations. Successful exploit may cause information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
huawei rse6500_firmware v500r002c00
huawei vp9660_firmware v600r006c10
huawei softco_firmware v200r003c20spcb00
huawei espace_u1981_firmware v200r001c20
huawei espace_u1981_firmware v200r003c20
huawei espace_u1981_firmware v200r003c30
huawei espace_u1981_firmware v200r003c50
CVE-2017-17175 LOW

Short Message Service (SMS) module of Mate 9 Pro Huawei smart phones with the versions before LON-AL00B 8.0.0.354(C00) has a Denial of Service (DoS) vulnerability. An unauthenticated attacker may set up a pseudo base station, and send special malware text message to the phone, causing the mobile phone to fail to make calls and send and receive text messages.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_9_pro *
CVE-2017-17176 HIGH

The hardware security module of Mate 9 and Mate 9 Pro Huawei smart phones with the versions earlier before MHA-AL00BC00B156, versions earlier before MHA-CL00BC00B156, versions earlier before MHA-DL00BC00B156, versions earlier before MHA-TL00BC00B156, versions earlier before LON-AL00BC00B156, versions earlier before LON-CL00BC00B156, versions earlier before LON-DL00BC00B156, versions earlier before LON-TL00BC00B156 has a arbitrary memory read/write vulnerability due to the input parameters validation. An attacker with the root privilege of the Android system could exploit this vulnerability to read and write memory data anywhere or execute arbitrary code in the TrustZone.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei mate_9_pro_firmware *
CVE-2017-17182 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a out-of-bounds read vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could make the device access invalid memory and might reset a process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17183 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17184 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17185 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a out-of-bounds read vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could make the device access invalid memory and might reset a process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17186 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a DoS vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could make some data overwritten, leak device memory and potentially reset a process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17187 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17199 MEDIUM

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an out-of-bounds read vulnerability due to the improper processing of malformed H323 messages. A remote attacker that controls a server could exploit this vulnerability by sending malformed H323 reply messages to a target device. Successful exploit could make the device read out of bounds and probably make a service unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17200 MEDIUM

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an out-of-bounds read vulnerability due to the improper processing of malformed H323 messages. A remote attacker that controls a server could exploit this vulnerability by sending malformed H323 reply messages to a target device. Successful exploit could make the device read out of bounds and probably make a service unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17201 MEDIUM

Some huawei smartphones with software BTV-DL09C233B350, Berlin-L21HNC432B360, Berlin-L22HNC636B360, Berlin-L24HNC567B360, Berlin-L21C10B130, Berlin-L21C185B132, Berlin-L21C464B130, Berlin-L22C346B140, Berlin-L22C636B160, Berlin-L23C605B131, Berlin-L23DOMC109B160, MHA-AL00AC00B125 have a DoS vulnerability. Due to insufficient input validation, an attacker could trick a user to execute a malicious application, which could be exploited by attacker to launch DoS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei berlin-emui5.0_firmware berlin-l21hnc432b360
huawei berlin-l23_firmware berlin-l23c605b131
huawei berlin-emui5.0_firmware berlin-l22hnc636b360
huawei berlin-l23_firmware berlin-l23domc109b160
huawei berlin-l21_firmware berlin-l21c464b130
huawei berlin-emui5.0_firmware berlin-l24hnc567b360
huawei berlin-l22_firmware berlin-l22c346b140
huawei berlin-l21_firmware berlin-l21c10b130
huawei berlin-l22_firmware berlin-l22c636b160
huawei berlin-l21_firmware berlin-l21c185b132
huawei mha-al00a_firmware mha-al00ac00b125
huawei btv-emui5.0_firmware btv-dl09c233b350
CVE-2017-17202 MEDIUM

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R005C32, V200R007C00, V200R008C20, V200R008C30, AR160 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R005C32, V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, NetEngine16EX V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, SRG1300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30 have an out-of-bounds read vulnerability due to insufficient input validation. An unauthenticated, remote attacker could exploit this vulnerability by sending malformed Session Initiation Protocol(SIP) packets to the target device. Successful exploit could make the device read out of bounds and thus cause a service to be unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar120-s_firmware v200r005c32
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150-s_firmware v200r005c32
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar150_firmware v200r007c02
huawei srg2300_firmware v200r005c32
huawei ar1200_firmware v200r007c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar150-s_firmware v200r007c00
huawei ar200-s_firmware v200r005c32
huawei ar1200-s_firmware v200r005c32
huawei ar150_firmware v200r005c32
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar3200_firmware v200r005c32
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei srg3300_firmware v200r005c32
huawei srg3300_firmware v200r008c20
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei ar200_firmware v200r007c01
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar3600_firmware v200r007c00
huawei ar160_firmware v200r005c32
huawei ar200_firmware v200r005c32
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar2200-s_firmware v200r005c32
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei ar1200-s_firmware v200r007c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei netengine16ex_firmware v200r005c32
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei srg3300_firmware v200r008c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar510_firmware v200r005c32
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar510_firmware v200r007c00
huawei ar1200_firmware v200r005c32
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei srg1300_firmware v200r005c32
CVE-2017-17215 MEDIUM

Huawei HG532 with some customized versions has a remote code execution vulnerability. An authenticated attacker could send malicious packets to port 37215 to launch attacks. Successful exploit could lead to the remote execution of arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei hg532_firmware -
CVE-2017-17216 MEDIUM

Media Gateway Control Protocol (MGCP) in Huawei DP300 V500R002C00; RP200 V500R002C00SPC200; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an out-of-bounds read vulnerability. An unauthenticated, remote attacker crafts malformed packets with specific parameter to the affected products. Due to insufficient validation of packets, successful exploitation may cause process reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei rp200_firmware v500r002c00spc200
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17217 MEDIUM

Media Gateway Control Protocol (MGCP) in Huawei DP300 V500R002C00; RP200 V500R002C00SPC200; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an out-of-bounds write vulnerability. An unauthenticated, remote attacker crafts malformed packets with specific parameter to the affected products. Due to insufficient validation of packets, successful exploitation may impact availability of product service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei rp200_firmware v500r002c00spc200
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17218 MEDIUM

SCCPX module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an out-of-bounds read vulnerability. An unauthenticated, remote attacker crafts malformed packets with specific parameter to the affected products. Due to insufficient validation of packets, successful exploitation may impact availability of product service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17219 MEDIUM

SCCPX module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an invalid memory access vulnerabilities. An unauthenticated, remote attacker crafts malformed packets with specific parameter to the affected products. Due to insufficient validation of packets, successful exploitation may impact availability of product service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17220 MEDIUM

SCCPX module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an invalid memory access vulnerabilities. An unauthenticated, remote attacker crafts malformed packets with specific parameter to the affected products. Due to insufficient validation of packets, successful exploitation may impact availability of product service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17221 MEDIUM

Import Signal Tone function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after the Signal Tone is uploaded. Due to insufficient verification of the packets, this could be exploited to execute arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei espace_8950_firmware v200r003c30
huawei espace_7950_firmware v200r003c30
huawei espace_8950_firmware v200r003c00
CVE-2017-17222 MEDIUM

Import Language Package function in Huawei eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 has a remote code execution vulnerability. An authenticated, remote attacker can craft and send the packets to the affected products after Language Package is uploaded. Due to insufficient verification of the packets, this could be exploited to execute arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei espace_8950_firmware v200r003c30
huawei espace_7950_firmware v200r003c30
huawei espace_8950_firmware v200r003c00
CVE-2017-17223 HIGH

Huawei eSpace 7910 V200R003C30; eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 have a directory traversal vulnerability. An authenticated, remote attacker can craft specific URL to the affected products. Due to insufficient verification of the URL, successful exploit will upload and download files and cause information leak and system crash.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei espace_8950_firmware v200r003c30
huawei espace_7950_firmware v200r003c30
huawei espace_8950_firmware v200r003c00
huawei espace_7910_firmware v200r003c30
CVE-2017-17224 MEDIUM

Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei hg655m_firmware *
CVE-2017-17225 HIGH

The Near Field Communication (NFC) module in Huawei Mate 9 Pro mobile phones with the versions before LON-AL00B 8.0.0.340a(C00) has a buffer overflow vulnerability due to the lack of input validation. An attacker may use an NFC card reader or another device to inject malicious data into a target mobile phone. Successful exploit could lead to system restart or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_9_pro_firmware *
CVE-2017-17227 HIGH

GPU driver in Huawei Mate 10 smart phones with the versions before ALP-L09 8.0.0.120(C212); The versions before ALP-L09 8.0.0.127(C900); The versions before ALP-L09 8.0.0.128(402/C02/C109/C346/C432/C652) has a out-of-bounds memory access vulnerability due to the input parameters validation. An attacker tricks a user into installing a malicious application on the smart phone, and the application can call the driver with special parameter and cause accessing out-of-bounds memory. Successful exploit may result in phone crash or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei mate_10_firmware *
CVE-2017-17250 HIGH

Huawei AR120-S V200R005C32; AR1200 V200R005C32; AR1200-S V200R005C32; AR150 V200R005C32; AR150-S V200R005C32; AR160 V200R005C32; AR200 V200R005C32; AR200-S V200R005C32; AR2200-S V200R005C32; AR3200 V200R005C32; V200R007C00; AR510 V200R005C32; NetEngine16EX V200R005C32; SRG1300 V200R005C32; SRG2300 V200R005C32; SRG3300 V200R005C32 have an out-of-bounds write vulnerability. When a user executes a query command after the device received an abnormal OSPF message, the software writes data past the end of the intended buffer due to the insufficient verification of the input data. An unauthenticated, remote attacker could exploit this vulnerability by sending abnormal OSPF messages to the device. A successful exploit could cause the system to crash.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei ar120-s_firmware v200r005c32
huawei s9700_firmware v200r007c00
huawei s7700_firmware v200r008c00
huawei s9700_firmware v200r007c01
huawei ar3200_firmware v200r005c32
huawei ar160_firmware v200r005c32
huawei ar200_firmware v200r005c32
huawei ar2200-s_firmware v200r005c32
huawei srg3300_firmware v200r005c32
huawei s5700_firmware v200r007c00
huawei ar150-s_firmware v200r005c32
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei srg2300_firmware v200r005c32
huawei s2700_firmware v200r006c10
huawei ar510_firmware v200r005c32
huawei ar1200_firmware v200r005c32
huawei ar3200_firmware v200r007c00
huawei s2700_firmware v200r008c00
huawei ar200-s_firmware v200r005c32
huawei s12700_firmware v200r007c01
huawei ar1200-s_firmware v200r005c32
huawei netengine16ex_firmware v200r005c32
huawei ar150_firmware v200r005c32
huawei s12700_firmware v200r007c00
huawei s2700_firmware v200r007c00
huawei srg1300_firmware v200r005c32
CVE-2017-17251 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 have a null pointer dereference vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets and send the packets to the affected products. Due to insufficient validation of packets, which could be exploited to cause process crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17252 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 has an out-of-bounds read vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets with specific parameters and send the packets to the affected products. Due to insufficient validation of packets, which could be exploited to cause process crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17253 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 has an out-of-bounds read vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets with specific parameters and send the packets to the affected products. Due to insufficient validation of packets, which could be exploited to cause process crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17254 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 have a null pointer dereference vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets and send the packets to the affected products. Due to insufficient validation of packets, which could be exploited to cause process crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17255 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 have a null pointer dereference vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets and send the packets to the affected products. Due to insufficient validation of packets, which could be exploited to cause process crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17256 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 has a memory leak vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets and send the packets to the affected products. Due to insufficient verification of the packets, successful exploit could cause a memory leak and eventual denial of service (DoS) condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17257 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 has a memory leak vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets and send the packets to the affected products. Due to insufficient verification of the packets, successful exploit could cause a memory leak and eventual denial of service (DoS) condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17258 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10SPC300, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00SPC180T, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10SPC200, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C00, V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00SPC200, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG6000V V500R001C20, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, VP9660 V500R002C00, V500R002C10, ViewPoint 8660 V100R008C03, ViewPoint 9030 V100R011C02 has a resource management vulnerability in H323 protocol. An unauthenticated, remote attacker could craft malformed packets and send the packets to the affected products in the case of failure to apply for memory. Due to insufficient validation of packets, which could be exploited to cause process crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10spc200
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei vp9660_firmware v500r002c10
huawei ar510_firmware v200r007c00spc180t
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei svn5800_firmware v200r003c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei secospace_usg6600_firmware v500r001c60
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v100r001c00spc200
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei usg6000v_firmware v500r001c20
huawei ngfw_module_firmware v100r001c10spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17279 MEDIUM

The soundtrigger module in Huawei Mate 9 Pro smart phones with software of the versions before LON-AL00B 8.0.0.343(C00) has an authentication bypass vulnerability due to the improper design of the module. An attacker tricks a user into installing a malicious application, and the application can exploit the vulnerability and make attacker bypass the authentication, the attacker can control the phone to sent short messages and make call within audio range to the phone.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_9_pro_firmware *
CVE-2017-17280 LOW

NFC (Near Field Communication) module in Huawei mobile phones with software LON-AL00BC00 has an information leak vulnerability. The attacker has to trick a user to do some specific operations and then craft the NFC message to exploit this vulnerability. Successful exploit will cause some information leak.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei lon-al00b_firmware lon-al00bc00
CVE-2017-17281 MEDIUM

SFTP module in Huawei DP300 V500R002C00; RP200 V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an out-of-bounds read vulnerability. A remote, authenticated attacker could exploit this vulnerability by sending specially crafted messages to a target device. Successful exploit may cause some information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17282 LOW

SCCP (Signalling Connection Control Part) module in Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 has a buffer overflow vulnerability. An attacker has to find a way to send malformed packets to the affected products repeatedly. Due to insufficient input validation, successful exploit may cause some service abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17283 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00 have an out-of-bound read vulnerability. A remote attacker send specially crafted Session Initiation Protocol (SIP) messages to the affected products. Due to insufficient input validation, successful exploit will cause some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te60_firmware v100r001c01
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17284 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00 have a resource management error vulnerability. A remote attacker may send huge number of specially crafted SIP messages to the affected products. Due to improper handling of some value in the messages, successful exploit will cause some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te60_firmware v100r001c01
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17285 MEDIUM

Bluetooth module in some Huawei mobile phones with software LON-AL00BC00B229 and earlier versions has a buffer overflow vulnerability. Due to insufficient input validation, an unauthenticated attacker may craft Bluetooth AVDTP/AVCTP messages after successful paring, causing buffer overflow. Successful exploit may cause code execution.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei lon-al00b_firmware *
CVE-2017-17286 MEDIUM

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R005C32, V200R007C00, V200R008C20, V200R008C30, AR160 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R005C32, V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, NetEngine16EX V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, SRG1300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30 have an out-of-bound write vulnerability. Due to insufficient input validation, a remote, unauthenticated attacker may craft encryption key to the affected products. Successful exploit may cause buffer overflow, services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar120-s_firmware v200r005c32
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150-s_firmware v200r005c32
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar150_firmware v200r007c02
huawei srg2300_firmware v200r005c32
huawei ar1200_firmware v200r007c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar150-s_firmware v200r007c00
huawei ar200-s_firmware v200r005c32
huawei ar1200-s_firmware v200r005c32
huawei ar150_firmware v200r005c32
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar3200_firmware v200r005c32
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei srg3300_firmware v200r005c32
huawei srg3300_firmware v200r008c20
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei ar200_firmware v200r007c01
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar3600_firmware v200r007c00
huawei ar160_firmware v200r005c32
huawei ar200_firmware v200r005c32
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar2200-s_firmware v200r005c32
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei ar1200-s_firmware v200r007c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei netengine16ex_firmware v200r005c32
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei srg3300_firmware v200r008c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar510_firmware v200r005c32
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar510_firmware v200r007c00
huawei ar1200_firmware v200r005c32
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei srg1300_firmware v200r005c32
CVE-2017-17287 MEDIUM

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R005C32, V200R007C00, V200R008C20, V200R008C30, AR160 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR2200 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R005C32, V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, NetEngine16EX V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, SRG1300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30 have an out-of-bound read vulnerability in some Huawei products. Due to insufficient input validation, a remote, unauthenticated attacker may send crafted signature to the affected products. Successful exploit may cause buffer overflow, services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar120-s_firmware v200r005c32
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150-s_firmware v200r005c32
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar150_firmware v200r007c02
huawei srg2300_firmware v200r005c32
huawei ar1200_firmware v200r007c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar150-s_firmware v200r007c00
huawei ar200-s_firmware v200r005c32
huawei ar1200-s_firmware v200r005c32
huawei ar150_firmware v200r005c32
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar3200_firmware v200r005c32
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei srg3300_firmware v200r005c32
huawei srg3300_firmware v200r008c20
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei ar200_firmware v200r007c01
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar3600_firmware v200r007c00
huawei ar160_firmware v200r005c32
huawei ar200_firmware v200r005c32
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar2200-s_firmware v200r005c32
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei ar1200-s_firmware v200r007c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei netengine16ex_firmware v200r005c32
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei srg3300_firmware v200r008c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar510_firmware v200r005c32
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar510_firmware v200r007c00
huawei ar1200_firmware v200r005c32
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei srg1300_firmware v200r005c32
CVE-2017-17288 MEDIUM

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. An unauthenticated, remote attacker may send specially crafted messages to the affected products. Due to insufficient input validation, successful exploit may cause integer overflow and some process abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17289 LOW

Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a memory leak vulnerability. The software does not release allocated memory properly when handling XML data. An authenticated, local attacker could upload crafted XML file repeatedly to cause memory leak and service abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17290 MEDIUM

The Light Directory Access Protocol (LDAP) clients of Huawei TE60 with software V600R006C00, ViewPoint 9030 with software V100R011C02, V100R011C03 have a resource management errors vulnerability. An unauthenticated, remote attacker may make the LDAP server not respond to the client's request by controlling the LDAP server. Due to improper management of LDAP connection resource, a successful exploit may cause the connection resource exhausted of the LDAP client.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei viewpoint_9030_firmware v100r011c03
huawei te60_firmware v600r006c00
huawei viewpoint_9030_firmware v100r011c02
CVE-2017-17291 LOW

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, MAX PRESENCE V100R001C00, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10 have a memory leak vulnerability. An authenticated, local attacker may craft a specific XML file to the affected products. Due to not free the memory to parse the XML file, successful exploit will result in memory leak of the affected products.

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei ar510_firmware v200r006c12
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei max_presence_firmware v100r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei rp200_firmware v500r002c00
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei te30_firmware v100r001c02
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-17292 LOW

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, MAX PRESENCE V100R001C00, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10 have a denial of service vulnerability in the specific module. An authenticated, local attacker may craft a specific XML file to the affected products. Due to improper handling of input, successful exploit will cause some service abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei ar510_firmware v200r006c12
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei max_presence_firmware v100r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei rp200_firmware v500r002c00
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei te30_firmware v100r001c02
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-17293 LOW

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, MAX PRESENCE V100R001C00, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10 have a buffer overflow vulnerability. An authenticated, local attacker may craft a specific XML file to the affected products. Due to insufficient input validation, successful exploit will cause some service abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei ar510_firmware v200r006c12
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei max_presence_firmware v100r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei rp200_firmware v500r002c00
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei te30_firmware v100r001c02
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-17294 LOW

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, MAX PRESENCE V100R001C00, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10 have a null pointer dereference vulnerability. Due to insufficient input validation, an authenticated, local attacker may craft a specific XML file to the affected products to cause null pointer dereference. Successful exploit will cause some service abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei ar510_firmware v200r006c12
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei max_presence_firmware v100r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei rp200_firmware v500r002c00
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei te30_firmware v100r001c02
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-17295 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V200R003C20SPC900, V200R003C30SPC200 have a buffer overflow vulnerability. An unauthenticated, remote attacker may send specially crafted SIP packages to the affected products. Due to the insufficient validation of some values for SIP packages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20spc900
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei ngfw_module_firmware v100r001c10
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei espace_u1981_firmware v200r003c30spc200
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17296 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V200R003C20SPC900, V200R003C30SPC200 have a memory leak vulnerability. An unauthenticated, remote attacker may send specially crafted H323 packages to the affected products. Due to not release the allocated memory properly to handle the packets, successful exploit may cause memory leak and some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20spc900
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei ngfw_module_firmware v100r001c10
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei espace_u1981_firmware v200r003c30spc200
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17297 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V200R003C20SPC900, V200R003C30SPC200 have a buffer overflow vulnerability. An unauthenticated, remote attacker may send specially crafted SIP packages to the affected products. Due to the insufficient validation of some values for SIP packages, successful exploit may cause services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei nip6600_firmware v500r001c50
huawei ips_module_firmware v100r001c30
huawei secospace_usg6500_firmware v500r001c00
huawei ar510_firmware v200r006c12
huawei secospace_usg6500_firmware v100r001c20
huawei ar2200_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei svn5800-c_firmware v200r003c10
huawei usg9500_firmware v500r001c20
huawei ar150_firmware v200r008c20
huawei usg9580_firmware v300r001c01
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei ips_module_firmware v500r001c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei usg9560_firmware v300r001c20
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ips_module_firmware v100r001c10
huawei espace_u1981_firmware v200r003c20spc900
huawei ngfw_module_firmware v100r001c30
huawei secospace_usg6600_firmware v100r001c20
huawei ar150-s_firmware v200r008c30
huawei nip6600_firmware v500r001c00
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ar510_firmware v200r008c30
huawei ngfw_module_firmware v100r001c10
huawei netengine16ex_firmware v200r008c30
huawei secospace_usg6300_firmware v500r001c00
huawei srg3300_firmware v200r007c02
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei semg9811_firmware v300r001c01
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei ar510_firmware v200r006c16
huawei usg9500_firmware v500r001c00
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ar1200_firmware v200r008c30
huawei ips_module_firmware v500r001c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c50
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei rse6500_firmware v500r002c00
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei secospace_usg6500_firmware v500r001c50
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei usg9580_firmware v300r001c20
huawei secospace_usg6500_firmware v100r001c30
huawei usg9520_firmware v300r001c01
huawei nip6600_firmware v500r001c20
huawei secospace_usg6300_firmware v100r001c10
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei nip6300_firmware v500r001c30
huawei ar1200-s_firmware v200r007c00
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v100r001c10
huawei nip6300_firmware v500r001c20
huawei rp200_firmware v500r002c00
huawei usg9520_firmware v300r001c20
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei svn5800-c_firmware v200r003c00
huawei ar200-s_firmware v200r006c10
huawei espace_u1981_firmware v200r003c30spc200
huawei ar510_firmware v200r008c20
huawei usg9500_firmware v500r001c50
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei secospace_usg6500_firmware v500r001c20
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei ngfw_module_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei usg9560_firmware v300r001c01
huawei nip6600_firmware v500r001c30
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei svn5600_firmware v200r003c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-17298 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, ViewPoint 9030 V100R011C02, V100R011C03 have a buffer overflow vulnerability. An unauthenticated, remote attacker may send specially crafted certificates to the affected products. Due to insufficient validation of the certificates, successful exploit may cause buffer overflow and some service abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei ar510_firmware v200r006c12
huawei ar2200_firmware v200r006c10
huawei te60_firmware v100r001c01
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei te60_firmware v100r001c10
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei te30_firmware v100r001c10
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei tp3106_firmware v100r002c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei viewpoint_9030_firmware v100r011c02
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei te50_firmware v600r006c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei rp200_firmware v600r006c00
huawei srg3300_firmware v200r008c20
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03
huawei ar1200_firmware v200r008c20
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei ar510_firmware v200r006c16
huawei ar200_firmware v200r007c01
huawei tp3206_firmware v100r002c10
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei te30_firmware v500r002c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar3600_firmware v200r007c00
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar200-s_firmware v200r008c30
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei rp200_firmware v500r002c00
huawei ar510_firmware v200r006c17
huawei te40_firmware v600r006c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar160_firmware v200r008c30
huawei ar2200_firmware v200r008c30
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei tp3206_firmware v100r002c00
huawei srg3300_firmware v200r008c30
huawei te30_firmware v100r001c02
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r007c00
huawei ar510_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2017-17299 MEDIUM

Huawei AR120-S V200R006C10, V200R007C00, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C02, AR1200-S V200R006C10, V200R007C00, V200R008C20, AR150 V200R006C10, V200R007C00, V200R007C02, AR150-S V200R006C10, V200R007C00, AR160 V200R006C10, V200R006C12, V200R007C00S, V200R007C02, AR200 V200R006C10, V200R007C00, AR200-S V200R006C10, V200R007C00, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C02, AR2200-S V200R006C10, V200R007C00, V200R008C20, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C02, AR3600 V200R006C10, V200R007C00, AR510 V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, IPS Module V500R001C30, NIP6300 V500R001C30, NetEngine16EX V200R006C10, V200R007C00 have an insufficient input validation vulnerability. An unauthenticated, remote attacker may send crafted IKE V2 messages to the affected products. Due to the insufficient validation of the messages, successful exploit will cause invalid memory access and result in a denial of service on the affected products.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r006c10
huawei ar1200_firmware v200r007c02
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei netengine16ex_firmware v200r007c00
huawei ar160_firmware v200r007c02
huawei ar2200_firmware v200r006c16
huawei ar150-s_firmware v200r006c10
huawei ar510_firmware v200r006c15
huawei ar3600_firmware v200r007c00
huawei ar510_firmware v200r006c12
huawei ar120-s_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei ar2200-s_firmware v200r007c00
huawei ar3200_firmware v200r007c02
huawei ar3600_firmware v200r006c10
huawei ar2200_firmware v200r007c02
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei ar160_firmware v200r006c10
huawei ar510_firmware v200r006c13
huawei nip6300_firmware v500r001c30
huawei ar1200-s_firmware v200r007c00
huawei ar160_firmware v200r007c00s
huawei ar150_firmware v200r007c02
huawei ips_module_firmware v500r001c30
huawei ar1200_firmware v200r007c00
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei ar510_firmware v200r006c17
huawei ar3200_firmware v200r006c10
huawei ar160_firmware v200r006c12
huawei ar510_firmware v200r007c00
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar2200_firmware v200r006c13
huawei ar510_firmware v200r006c16
huawei ar1200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar1200-s_firmware v200r006c10
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei ar2200_firmware v200r007c00
huawei ar200-s_firmware v200r006c10
CVE-2017-17300 HIGH

Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain authentication option to the affected products. Due to the improper validation of the messages, it will cause numeric errors when handling the messages. Successful exploit will cause the affected products to reset.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r009c00
huawei s7700_firmware v200r008c00
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r008c00
huawei s5700_firmware v200r009c00
huawei s9700_firmware v200r009c00
huawei s5700_firmware v200r007c00
huawei s6700_firmware v200r009c00
huawei s7700_firmware v200r009c00
huawei s12700_firmware v200r008c00
CVE-2017-17301 HIGH

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR1200 V200R005C20, V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, AR160 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, AR200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR2200 V200R005C20, V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, AR2200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR3200 V200R005C32, V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R005C32, V200R006C10, V200R007C00, V200R008C20, CloudEngine 12800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, V200R001C00, CloudEngine 5800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, V200R001C00, CloudEngine 6800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, V200R001C00, CloudEngine 7800 V100R003C00, V100R003C10, V100R005C00, V100R005C10, V100R006C00, V200R001C00, DP300 V500R002C00, SMC2.0 V100R003C10, V100R005C00, V500R002C00, SRG1300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, SRG2300 V200R005C32, V200R006C10, V200R007C00, V200R007C02, V200R008C20, SRG3300 V200R005C32, V200R006C10, V200R007C00, V200R008C20, TE30 V100R001C10, TE60 V100R003C00, V500R002C00, VP9660 V200R001C02, V200R001C30, V500R002C00, ViewPoint 8660 V100R008C02, V100R008C03, eSpace IAD V300R002C01, eSpace U1981 V200R003C20, V200R003C30, eSpace USM V100R001C01, V300R001C00 have a weak cryptography vulnerability. Due to not properly some values in the certificates, an unauthenticated remote attacker could forges a specific RSA certificate and exploits the vulnerability to pass identity authentication and logs into the target device to obtain permissions configured for the specific user name.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-295,

Products Affected

Vendor Product Version
huawei cloudengine_6800_firmware v100r005c10
huawei ar120-s_firmware v200r005c32
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei cloudengine_7800_firmware v100r006c00
huawei viewpoint_8660_firmware v100r008c02
huawei cloudengine_5800_firmware v100r003c10
huawei ar2200_firmware v200r006c10
huawei ar2200_firmware v200r005c32
huawei cloudengine_5800_firmware v100r005c10
huawei te60_firmware v100r003c00
huawei ar3600_firmware v200r006c10
huawei ar3600_firmware v200r007c01
huawei ar150_firmware v200r008c20
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei espace_u1981_firmware v200r003c30
huawei ar3200_firmware v200r006c11
huawei cloudengine_6800_firmware v100r006c00
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei te30_firmware v100r001c10
huawei espace_usm_firmware v300r001c00
huawei ar150_firmware v200r007c02
huawei srg2300_firmware v200r005c32
huawei cloudengine_7800_firmware v100r005c00
huawei ar1200_firmware v200r007c00
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar200-s_firmware v200r005c32
huawei ar1200-s_firmware v200r005c32
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c10
huawei vp9660_firmware v200r001c02
huawei cloudengine_7800_firmware v100r003c10
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar160_firmware v200r007c02
huawei ar3200_firmware v200r005c32
huawei cloudengine_12800_firmware v100r006c00
huawei ar1200_firmware v200r005c20
huawei ar2200-s_firmware v200r007c00
huawei srg3300_firmware v200r005c32
huawei srg3300_firmware v200r008c20
huawei cloudengine_12800_firmware v100r005c10
huawei dp300_firmware v500r002c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei cloudengine_6800_firmware v100r003c00
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r008c20
huawei ar2200_firmware v200r005c20
huawei cloudengine_5800_firmware v100r005c00
huawei ar200_firmware v200r007c01
huawei cloudengine_6800_firmware v100r003c10
huawei ar1200-s_firmware v200r006c10
huawei espace_u1981_firmware v200r003c20
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei cloudengine_7800_firmware v100r003c00
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar3600_firmware v200r007c00
huawei ar160_firmware v200r005c32
huawei ar200_firmware v200r005c32
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar2200-s_firmware v200r005c32
huawei espace_iad_firmware v300r002c01
huawei cloudengine_7800_firmware v100r005c10
huawei viewpoint_8660_firmware v100r008c03
huawei ar200-s_firmware v200r007c01
huawei ar3200_firmware v200r008c10
huawei ar150_firmware v200r007c01
huawei cloudengine_12800_firmware v100r005c00
huawei te60_firmware v500r002c00
huawei ar1200-s_firmware v200r007c00
huawei ar1200_firmware v200r007c01
huawei smc2.0_firmware v500r002c00
huawei vp9660_firmware v200r001c30
huawei cloudengine_12800_firmware v100r003c10
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei cloudengine_5800_firmware v200r001c00
huawei cloudengine_12800_firmware v200r001c00
huawei ar510_firmware v200r008c20
huawei srg2300_firmware v200r006c10
huawei cloudengine_6800_firmware v200r001c00
huawei cloudengine_12800_firmware v100r003c00
huawei ar3200_firmware v200r007c02
huawei ar200-s_firmware v200r008c20
huawei vp9660_firmware v500r002c00
huawei ar3200_firmware v200r008c00
huawei cloudengine_5800_firmware v100r003c00
huawei srg3300_firmware v200r007c00
huawei cloudengine_6800_firmware v100r005c00
huawei cloudengine_5800_firmware v100r006c00
huawei ar510_firmware v200r006c10
huawei ar510_firmware v200r005c32
huawei smc2.0_firmware v100r005c00
huawei ar1200_firmware v200r006c10
huawei cloudengine_7800_firmware v200r001c00
huawei ar510_firmware v200r007c00
huawei ar1200_firmware v200r005c32
huawei srg2300_firmware v200r008c20
huawei espace_usm_firmware v100r001c01
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei srg1300_firmware v200r005c32
CVE-2017-17302 LOW

Huawei DP300 V500R002C00, RP200 V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a memory leak vulnerability. An authenticated, local attacker may craft and load some specific Certificate Revocation List(CRL) configuration files to the devices repeatedly. Due to not release allocated memory properly, successful exploit may result in memory leak and services abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17303 MEDIUM

Huawei DP300 V500R002C00; V500R002C00B010; V500R002C00B011; V500R002C00B012; V500R002C00B013; V500R002C00B014; V500R002C00B017; V500R002C00B018; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE30 V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE60 V100R001C10; V100R001C10B001; V100R001C10B002; V100R001C10B010; V100R001C10B011; V100R001C10B012; V100R001C10B013; V100R001C10B014; V100R001C10B016; V100R001C10B017; V100R001C10B018; V100R001C10B019; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800B011; V100R001C10SPC900; V500R002C00; V500R002C00B010; V500R002C00B011; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V500R002C00SPCe00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300 use the CIDAM protocol, which contains sensitive information in the message when it is implemented. So these products has an information disclosure vulnerability. An authenticated remote attacker could track and get the message of a target system. Successful exploit could allow the attacker to get the information and cause the sensitive information disclosure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei te30_firmware v500r002c00spc700
huawei rp200_firmware v600r006c00spc200
huawei te40_firmware v500r002c00spc600
huawei dp300_firmware v500r002c00spc500
huawei te60_firmware v500r002c00spca00
huawei te60_firmware v500r002c00spc300
huawei te60_firmware v500r002c00b010
huawei te40_firmware v600r006c00spc200
huawei te60_firmware v100r001c10spc700
huawei te60_firmware v500r002c00b011
huawei te50_firmware v600r006c00spc300
huawei dp300_firmware v500r002c00b018
huawei dp300_firmware v500r002c00b011
huawei te60_firmware v500r002c00spc200
huawei te30_firmware v500r002c00spc600
huawei te60_firmware v100r001c10
huawei te60_firmware v100r001c10b013
huawei te30_firmware v100r001c10spc300
huawei te60_firmware v600r006c00spc200
huawei dp300_firmware v500r002c00b014
huawei dp300_firmware v500r002c00spc900
huawei te60_firmware v100r001c10b018
huawei dp300_firmware v500r002c00spc100
huawei te60_firmware v100r001c10b019
huawei te60_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei rp200_firmware v500r002c00spc200
huawei te60_firmware v500r002c00spce00
huawei te60_firmware v500r002c00spcd00
huawei dp300_firmware v500r002c00b012
huawei te40_firmware v500r002c00spc900
huawei dp300_firmware v500r002c00b013
huawei te60_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc100
huawei te60_firmware v600r006c00spc100
huawei te40_firmware v600r006c00
huawei te60_firmware v100r001c10spc500
huawei rp200_firmware v600r006c00spc300
huawei te60_firmware v100r001c10b001
huawei dp300_firmware v500r002c00spca00
huawei te30_firmware v500r002c00spcb00
huawei te50_firmware v600r006c00spc200
huawei te30_firmware v600r006c00spc200
huawei te30_firmware v100r001c10spc600
huawei te60_firmware v100r001c10b002
huawei te50_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc600
huawei te30_firmware v100r001c10spc500
huawei dp300_firmware v500r002c00spc600
huawei dp300_firmware v500r002c00b017
huawei te60_firmware v100r001c10b010
huawei te60_firmware v100r001c10b011
huawei te50_firmware v600r006c00
huawei dp300_firmware v500r002c00b010
huawei te60_firmware v100r001c10b014
huawei dp300_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei te60_firmware v100r001c10spc800b011
huawei rp200_firmware v600r006c00
huawei te60_firmware v500r002c00spc900
huawei te30_firmware v500r002c00spc500
huawei te40_firmware v500r002c00spc700
huawei te40_firmware v500r002c00spcb00
huawei te60_firmware v100r001c10spc400
huawei dp300_firmware v500r002c00
huawei te30_firmware v100r001c10spc700b010
huawei te60_firmware v600r006c00spc300
huawei te30_firmware v500r002c00spc200
huawei te60_firmware v100r001c10spc900
huawei te40_firmware v600r006c00spc300
huawei te60_firmware v100r001c10b012
huawei te60_firmware v100r001c10b017
huawei dp300_firmware v500r002c00spc800
huawei te60_firmware v500r002c00spc700
huawei te60_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc300
huawei te30_firmware v500r002c00spc900
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te50_firmware v500r002c00spc700
huawei te60_firmware v100r001c10b016
huawei te30_firmware v600r006c00spc300
CVE-2017-17304 MEDIUM

The CIDAM Protocol on some Huawei Products has multiple input validation vulnerabilities due to insufficient validation of specific messages when the protocol is implemented. An authenticated remote attacker could send a malicious message to a target system. Successful exploit could allow the attacker to tamper with business and make the system abnormal. Affected Huawei Products are: DP300 versions V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00B012, V500R002C00B013, V500R002C00B014, V500R002C00B017, V500R002C00B018, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC400, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00; RP200 versions V500R002C00SPC200, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE30 versions V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700B010, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE40 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE50 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; TE60 versions V100R001C10, V100R001C10B001, V100R001C10B002, V100R001C10B010, V100R001C10B011, V100R001C10B012, V100R001C10B013, V100R001C10B014, V100R001C10B016, V100R001C10B017, V100R001C10B018, V100R001C10B019, V100R001C10SPC400, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V100R001C10SPC800B011, V100R001C10SPC900, V500R002C00, V500R002C00B010, V500R002C00B011, V500R002C00SPC100, V500R002C00SPC200, V500R002C00SPC300, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC800, V500R002C00SPC900, V500R002C00SPCa00, V500R002C00SPCb00, V500R002C00SPCd00, V500R002C00SPCe00, V600R006C00, V600R006C00SPC100, V600R006C00SPC200, V600R006C00SPC300, V600R006C00SPC400, V600R006C00SPC500; eSpace U1981 version V200R003C20SPC900.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei dp300_firmware v500r002c00
huawei dp300_firmware v500r002c00spc400
huawei dp300_firmware v500r002c00b012
huawei dp300_firmware v500r002c00spc500
huawei dp300_firmware v500r002c00b013
huawei dp300_firmware v500r002c00spc800
huawei dp300_firmware v500r002c00spc600
huawei dp300_firmware v500r002c00b017
huawei dp300_firmware v500r002c00spc300
huawei dp300_firmware v500r002c00b010
huawei dp300_firmware v500r002c00b018
huawei dp300_firmware v500r002c00spc200
huawei dp300_firmware v500r002c00b011
huawei dp300_firmware v500r002c00spca00
huawei dp300_firmware v500r002c00b014
huawei dp300_firmware v500r002c00spc900
huawei dp300_firmware v500r002c00spc100
CVE-2017-17305 MEDIUM

Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a Bleichenbacher Oracle vulnerability in the IPSEC IKEv1 implementations. Remote attackers can decrypt IPSEC tunnel ciphertext data by leveraging a Bleichenbacher RSA padding oracle. Cause a Bleichenbacher oracle attack. Successful exploit this vulnerability can impact IPSec tunnel security.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
huawei usg5150bsr_firmware v300r001c00
huawei usg5120bsr_firmware v300r001c00
huawei usg2220bsr_firmware v300r001c00
huawei usg2205bsr_firmware v300r001c10spc600
CVE-2017-17306 MEDIUM

Some Huawei Smartphones with software of VNS-L21AUTC555B141, VNS-L21C10B160, VNS-L21C66B160, VNS-L21C703B140 have an array out-of-bounds read vulnerability. Due to the lack verification of array, an attacker tricks a user into installing a malicious application, and the application can exploit the vulnerability and make attacker to read out of bounds of array and possibly cause the device abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei vns-l21_firmware vns-l21c10b160
huawei vns-l21_firmware vns-l21c703b140
huawei vns-l21_firmware vns-l21c66b160
huawei vns-l21_firmware vns-l21autc555b141
CVE-2017-17307 MEDIUM

Some Huawei Smartphones with software of VNS-L21AUTC555B141 have an out-of-bounds read vulnerability. Due to the lack string terminator of string, an attacker tricks a user into installing a malicious application, and the application can exploit the vulnerability and make attacker to read out of bounds and possibly cause the device abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei vns-l21_firmware vns-l21autc555b141
CVE-2017-17308 MEDIUM

SCCPX module in Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 has an invalid memory access vulnerability. An unauthenticated, remote attacker may send specially crafted packets to the affected products. Due to insufficient validation of packets, successful exploit may cause some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
huawei dp300_firmware v500r002c00spcb00
CVE-2017-17309 HIGH

Huawei HG255s-10 V100R001C163B025SP02 has a path traversal vulnerability due to insufficient validation of the received HTTP requests, a remote attacker may access the local files on the device without authentication.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei hg255s-10_firmware v100r001c163b025sp02
CVE-2017-17310 MEDIUM

Electronic Numbers to URI Mapping (ENUM) module in some Huawei products DP300 V500R002C00, RP200 V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a buffer error vulnerability. An unauthenticated, remote attacker has to control the peer device and send specially crafted ENUM packets to the affected products. Due to insufficient verification of some values in the packets, successful exploit may cause buffer error and some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
huawei dp300_firmware v500r002c00spcb00
CVE-2017-17311 HIGH

Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a DoS vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Due to improper handling of the malformed messages, an attacker may sent crafted packets to the affected device to exploit these vulnerabilities. Successful exploit the vulnerability could lead to device deny of service.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei usg5150bsr_firmware v300r001c00
huawei usg5120bsr_firmware v300r001c00
huawei usg2220bsr_firmware v300r001c00
huawei usg2205bsr_firmware v300r001c10spc600
CVE-2017-17312 HIGH

Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a DoS vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Due to improper handling of the malformed messages, an attacker may sent crafted packets to the affected device to exploit these vulnerabilities. Successful exploit the vulnerability could lead to device deny of service.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei usg5150bsr_firmware v300r001c00
huawei usg5120bsr_firmware v300r001c00
huawei usg2220bsr_firmware v300r001c00
huawei usg2205bsr_firmware v300r001c10spc600
CVE-2017-17313 HIGH

The inputhub driver of HUAWEI P9 Lite mobile phones with Versions earlier than VNS-L21C02B341, Versions earlier than VNS-L21C22B380, Versions earlier than VNS-L31C02B341, Versions earlier than VNS-L31C440B390, Versions earlier than VNS-L31C636B396 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP and the APP may sends specific data to the inputhub driver to exploit this vulnerability, successful exploit could cause the system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p9_lite_firmware *
CVE-2017-17314 MEDIUM

Huawei DP300 V500R002C00, RP200 V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an invalid memory access vulnerability. An unauthenticated attacker has to find a way to send malformed SCCP messages to the affected products. Due to insufficient input validation of some values in the messages, successful exploit may cause buffer error and some service abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17315 MEDIUM

Huawei DP300 V500R002C00; RP200 V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specially crafted SCCP messages to the affected products. Due to the improper validation of the messages, it will cause numeric errors when handling the messages. Successful exploit will cause some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17316 MEDIUM

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an out-of-bounds read vulnerability. An unauthenticated, remote attacker has to control the peer device and craft the Signalling Connection Control Part (SCCP) messages to the target devices. Due to insufficient input validation of some values in the messages, successful exploit will cause out-of-bounds read and some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17317 MEDIUM

Common Open Policy Service Protocol (COPS) module in Huawei USG6300 V100R001C10; V100R001C20; V100R001C30; V500R001C00; V500R001C20; V500R001C30; V500R001C50; Secospace USG6500 V100R001C10; V100R001C20; V100R001C30; V500R001C00; V500R001C20; V500R001C30; V500R001C50; Secospace USG6600 V100R001C00; V100R001C20; V100R001C30; V500R001C00; V500R001C20; V500R001C30; V500R001C50; TE30 V100R001C02; V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C01; V100R001C10; V500R002C00; V600R006C00 has a buffer overflow vulnerability. An unauthenticated, remote attacker has to control the peer device and send specially crafted message to the affected products. Due to insufficient input validation, successful exploit may cause some services abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te30_firmware v500r002c00
huawei te40_firmware v500r002c00
huawei te30_firmware v100r001c02
huawei rp200_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te60_firmware v100r001c01
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2017-17318 MEDIUM

Huawei MBB (Mobile Broadband) products E5771h-937 with the versions before E5771h-937TCPU-V200R001B328D62SP00C1133 and the versions before E5771h-937TCPU-V200R001B329D05SP00C1308 have a Denial of Service (DoS) vulnerability. When an attacker accessing device sends special http request to device, the webserver process will try to apply too much memory which can cause the device to become unable to respond. An attacker can launch a DoS attack by exploiting this vulnerability.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei e5771h-937_firmware *
CVE-2017-17319 HIGH

Huawei P9 smartphones with the versions before EVA-AL10C00B399SP02 have an information disclosure vulnerability. The software does not properly protect certain resource which can be accessed by multithreading. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could result in kernel information disclosure.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei p9_firmware *
CVE-2017-17320 HIGH

Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could result in malicious code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei mate_9_pro_firmware lon-l29dc721b188
huawei mate_9_pro_firmware lon-al00bc00b229
huawei mate_9_pro_firmware lon-al00bc00b139d
CVE-2017-17321 LOW

Huawei eNSP software with software of versions earlier than V100R002C00B510 has a buffer overflow vulnerability. Due to the improper validation of specific command line parameter, a local attacker could exploit this vulnerability to cause the software process abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei ensp_firmware *
CVE-2017-17322 MEDIUM

Huawei Honor Smart Scale Application with software of 1.1.1 has an information disclosure vulnerability. The application does not sufficiently restrict the resource which can be accessed by certain protocol. An attacker could trick the user to click a malicious link, successful exploit could cause information disclosure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei honor_smart_scale_application_firmware 1.1.1
CVE-2017-17323 MEDIUM

Huawei iBMC V200R002C10; V200R002C20; V200R002C30 have an improper authorization vulnerability. The software incorrectly performs an authorization check when a normal user attempts to access certain information which is supposed to be accessed only by admin user. Successful exploit could cause information disclosure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei ibmc_firmware v200r002c20
huawei ibmc_firmware v200r002c30
huawei ibmc_firmware v200r002c10
CVE-2017-17324 MEDIUM

Huawei Mate 9 Pro smartphones with software LON-AL00BC00B139D; LON-AL00BC00B229 have an integer overflow vulnerability. The camera driver does not validate the external input parameters and causes an integer overflow, which in the after processing results in a buffer overflow. An attacker tricks the user to install a crafted application, successful exploit could cause malicious code execution.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei mate_9_pro_firmware lon-al00bc00b229
huawei mate_9_pro_firmware lon-al00bc00b139d
CVE-2017-17325 MEDIUM

Huawei video applications HiCinema with software of 8.0.3.308; 8.0.4.300 have a permission control vulnerability. Due to improper verification of specific interface, an attacker who is on the same network with the user can obtain some information through a man-in-the-middle attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei hicinema 8.0.4.300
huawei hicinema 8.0.3.308
CVE-2017-17326 LOW

Huawei Mate 9 Pro Smartphones with software of LON-AL00BC00B139D; LON-AL00BC00B229 have an activation lock bypass vulnerability. The smartphone is supposed to be activated by the former account after reset if find my phone function is on. The software does not have a sufficient protection of activation lock. Successful exploit could allow an attacker to bypass the activation lock and activate the smartphone by a new account after a series of operation.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_9_pro_fimware lon-al00bc00b139d
huawei mate_9_pro_fimware lon-al00bc00b229
CVE-2017-17327 MEDIUM

Huawei smartphones with software of MHA-AL00AC00B125 have an improper resource management vulnerability. The software does not properly manage the resource when do device register operation. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could cause certain service unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mha-al00a_firmware mha-al00ac00b125
CVE-2017-17328 HIGH

Huawei smartphones with software of MHA-AL00AC00B125 have an integer overflow vulnerability. The software does not process certain variable properly when handle certain process. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could cause information disclosure.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei mha-al00a_firmware mha-al00ac00b125
CVE-2017-17329 LOW

Huawei ViewPoint 8660 V100R008C03 have a memory leak vulnerability. The software does not release allocated memory properly when parse XML Schema data. An authenticated attacker could upload a crafted XML file, successful exploit could cause the system service abnormal since run out of memory.

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei viewpoint_8660_firmware v100r008c03
CVE-2017-17330 LOW

Huawei AR3200 V200R005C32; V200R006C10; V200R006C11; V200R007C00; V200R007C01; V200R007C02; V200R008C00; V200R008C10; V200R008C20; V200R008C30; NGFW Module V500R001C00; V500R001C20; V500R002C00 have a memory leak vulnerability. The software does not release allocated memory properly when parse XML element data. An authenticated attacker could upload a crafted XML file, successful exploit could cause the system service abnormal since run out of memory.

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei ar3200_firmware v200r008c10
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar3200_firmware v200r005c32
huawei ngfw_module_firmware v500r001c20
huawei ngfw_module_firmware v500r002c00
huawei ar3200_firmware v200r006c10
huawei ar3200_firmware v200r007c02
huawei ar3200_firmware v200r007c00
huawei ar3200_firmware v200r008c30
huawei ngfw_module_firmware v500r001c00
huawei ar3200_firmware v200r008c00
huawei ar3200_firmware v200r006c11
CVE-2017-2690 MEDIUM

SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200R003C30,eSpace U1960 with software V200R003C20, V200R003C30,eSpace U1980 with software V200R003C20, V200R003C30,eSpace U1981 with software V200R003C20 and V200R003C30 have an denial of service (DoS) vulnerability, which allow an attacker with specific permission to craft a file containing malicious data and upload it to the device to exhaust memory, causing a DoS condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei espace_u1930_firmware v200r003c30
huawei espace_u1911_firmware v200r003c30
huawei espace_u1911_firmware v200r003c20
huawei espace_u1930_firmware v200r003c20
huawei espace_u1980_firmware v200r003c30
huawei espace_u1910_firmware v200r003c00
huawei espace_u1960_firmware v200r003c20
huawei softco_firmware v200r003c20
huawei espace_u1960_firmware v200r003c30
huawei espace_u1910_firmware v200r003c30
huawei espace_u1910_firmware v200r003c20
huawei espace_u1980_firmware v200r003c20
huawei espace_u1981_firmware v200r003c20
huawei espace_u1981_firmware v200r003c30
CVE-2017-2691 HIGH

Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability. An unauthenticated attacker could force the phone to the fastboot mode and delete the user's password file during the reboot process, then login the phone without screen lock password after reboot.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p9_firmware *
CVE-2017-2692 MEDIUM

The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C10B150 and earlier versions,ALE-L21C185B200 and earlier versions,ALE-L21C432B214 and earlier versions,ALE-L21C464B150 and earlier versions,ALE-L21C636B200 and earlier versions,ALE-L23C605B190 and earlier versions,ALE-TL00C01B250 and earlier versions,ALE-UL00C00B250 and earlier versions,MT7-L09C605B325 and earlier versions,MT7-L09C900B339 and earlier versions,MT7-TL10C900B339 and earlier versions,CRR-CL00C92B172 and earlier versions,CRR-L09C432B180 and earlier versions,CRR-TL00C01B172 and earlier versions,CRR-UL00C00B172 and earlier versions,CRR-UL20C432B171 and earlier versions,GRA-CL00C92B230 and earlier versions,GRA-L09C432B222 and earlier versions,GRA-TL00C01B230SP01 and earlier versions,GRA-UL00C00B230 and earlier versions,GRA-UL00C10B201 and earlier versions,GRA-UL00C432B220 and earlier versions,H60-L04C10B523 and earlier versions,H60-L04C185B523 and earlier versions,H60-L04C636B527 and earlier versions,H60-L04C900B530 and earlier versions,PLK-AL10C00B220 and earlier versions,PLK-AL10C92B220 and earlier versions,PLK-CL00C92B220 and earlier versions,PLK-L01C10B140 and earlier versions,PLK-L01C185B130 and earlier versions,PLK-L01C432B187 and earlier versions,PLK-L01C432B190 and earlier versions,PLK-L01C432B190 and earlier versions,PLK-L01C636B130 and earlier versions,PLK-TL00C01B220 and earlier versions,PLK-TL01HC01B220 and earlier versions,PLK-UL00C17B220 and earlier versions,ATH-AL00C00B210 and earlier versions,ATH-AL00C92B200 and earlier versions,ATH-CL00C92B210 and earlier versions,ATH-TL00C01B210 and earlier versions,ATH-TL00HC01B210 and earlier versions,ATH-UL00C00B210 and earlier versions,RIO-AL00C00B220 and earlier versions,RIO-CL00C92B220 and earlier versions,RIO-TL00C01B220 and earlier versions,RIO-UL00C00B220 and earlier versions have a privilege elevation vulnerability. An attacker may exploit it to launch command injection in order to gain elevated privileges.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei honor_6_firmware *
huawei shotx_firmware *
huawei mate_s_firmware *
huawei g8_firmware *
huawei honor_7_firmware *
huawei p8_firmware *
huawei p8_lite_firmware *
huawei mate_7_firmware *
CVE-2017-2693 MEDIUM

ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C10B150 and earlier versions,ALE-L21C185B200 and earlier versions,ALE-L21C432B214 and earlier versions,ALE-L21C464B150 and earlier versions,ALE-L21C636B200 and earlier versions,ALE-L23C605B190 and earlier versions,ALE-TL00C01B250 and earlier versions,ALE-UL00C00B250 and earlier versions,MT7-L09C605B325 and earlier versions,MT7-L09C900B339 and earlier versions,MT7-TL10C900B339 and earlier versions,CRR-CL00C92B172 and earlier versions,CRR-L09C432B180 and earlier versions,CRR-TL00C01B172 and earlier versions,CRR-UL00C00B172 and earlier versions,CRR-UL20C432B171 and earlier versions,GRA-CL00C92B230 and earlier versions,GRA-L09C432B222 and earlier versions,GRA-TL00C01B230SP01 and earlier versions,GRA-UL00C00B230 and earlier versions,GRA-UL00C10B201 and earlier versions,GRA-UL00C432B220 and earlier versions,H60-L04C10B523 and earlier versions,H60-L04C185B523 and earlier versions,H60-L04C636B527 and earlier versions,H60-L04C900B530 and earlier versions,PLK-AL10C00B220 and earlier versions,PLK-AL10C92B220 and earlier versions,PLK-CL00C92B220 and earlier versions,PLK-L01C10B140 and earlier versions,PLK-L01C185B130 and earlier versions,PLK-L01C432B187 and earlier versions,PLK-L01C432B190 and earlier versions,PLK-L01C432B190 and earlier versions,PLK-L01C636B130 and earlier versions,PLK-TL00C01B220 and earlier versions,PLK-TL01HC01B220 and earlier versions,PLK-UL00C17B220 and earlier versions,ATH-AL00C00B210 and earlier versions,ATH-AL00C92B200 and earlier versions,ATH-CL00C92B210 and earlier versions,ATH-TL00C01B210 and earlier versions,ATH-TL00HC01B210 and earlier versions,ATH-UL00C00B210 and earlier versions,RIO-AL00C00B220 and earlier versions,RIO-CL00C92B220 and earlier versions,RIO-TL00C01B220 and earlier versions,RIO-UL00C00B220 and earlier versions have a path traversal vulnerability. An attacker may exploit it to decompress malicious files into a target path.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei honor_6_firmware *
huawei shotx_firmware *
huawei mate_s_firmware *
huawei g8_firmware *
huawei honor_7_firmware *
huawei p8_firmware *
huawei p8_lite_firmware *
huawei mate_7_firmware *
CVE-2017-2694 MEDIUM

The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will be played suddenly, compromising user experience.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,

Products Affected

Vendor Product Version
huawei vmall *
CVE-2017-2695 MEDIUM

TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei tit-al00_firmware c583b211
CVE-2017-2696 HIGH

The emerg_data driver in CAM-L21C10B130 and earlier versions, CAM-L21C185B141 and earlier versions has a buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei y6ii_firmware *
CVE-2017-2697 HIGH

The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B160 and earlier versions,VNS-L21C185B142 and earlier versions,CAM-L21C10B130 and earlier versions,CAM-L21C185B141 and earlier versions has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p9_lite_firmware *
huawei y6ii_firmware *
huawei knt_firmware *
huawei gt3_firmware *
huawei honor_5c_firmware *
CVE-2017-2698 HIGH

The ddr_devfreq driver in versions earlier than GRA-UL00C00B197 has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p8_firmware *
CVE-2017-2699 MEDIUM

The Huawei Themes APP in versions earlier than PLK-UL00C17B385, versions earlier than CRR-L09C432B380, versions earlier than LYO-L21C577B128 has a privilege elevation vulnerability. An attacker could exploit this vulnerability to upload theme packs containing malicious files and trick users into installing the theme packets, resulting in the execution of arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
huawei mate_s_firmware *
huawei honor_7_firmware *
huawei lyo-l21_firmware *
CVE-2017-2700 MEDIUM

AC6005 with software V200R006C10, AC6605 with software V200R006C10 have a DoS Vulnerability. An attacker can send malformed packets to the device, which causes the device memory leaks, leading to DoS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei ac6005_firmware v200r006c10
huawei ac6605_firmware v200r006c10
CVE-2017-2701 MEDIUM

Mate 9 with software MHA-AL00AC00B125 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application. Since the system does not verify the broadcasting message from the application, it could be exploited to cause some functions of system unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei mate_9_firmware mha-al00ac00b125
CVE-2017-2702 HIGH

Phone Finder in versions earlier before MHA-AL00C00B170 can be bypass. An attacker can bypass the Phone Finder by special steps and obtain the owner of the phone.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
CVE-2017-2703 HIGH

Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00BC00B156,Versions earlier before MHA-DL00BC00B156,Versions earlier before MHA-TL00BC00B156,Versions earlier before EVA-AL10C00B373,Versions earlier before EVA-CL10C00B373,Versions earlier before EVA-DL10C00B373,Versions earlier before EVA-TL10C00B373 can be bypass. An attacker can bypass the Phone Finder by special steps and enter the System Setting.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei p9_firmware *
CVE-2017-2704 MEDIUM

Smarthome 1.0.2.364 and earlier versions,HiAPP 7.3.0.303 and earlier versions,HwParentControl 2.0.0 and earlier versions,HwParentControlParent 5.1.0.12 and earlier versions,Crowdtest 1.5.3 and earlier versions,HiWallet 8.0.0.301 and earlier versions,Huawei Pay 8.0.0.300 and earlier versions,Skytone 8.1.2.300 and earlier versions,HwCloudDrive(EMUI6.0) 8.0.0.307 and earlier versions,HwPhoneFinder(EMUI6.0) 9.3.0.310 and earlier versions,HwPhoneFinder(EMUI5.1) 9.2.2.303 and earlier versions,HiCinema 8.0.2.300 and earlier versions,HuaweiWear 21.0.0.360 and earlier versions,HiHealthApp 3.0.3.300 and earlier versions have an information exposure vulnerability. Encryption keys are stored in the system. The attacker can implement reverse engineering to obtain the encryption keys, causing information exposure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei hwparentcontrolparent *
huawei crowdtest *
huawei hiapp *
huawei hicinema *
huawei hwclouddrive(emui6.0) *
huawei huaweiwear *
huawei smarthome *
huawei hwparentcontrol *
huawei hihealthapp *
huawei hiwallet *
huawei hwphonefinder(emui5.1) *
huawei huawei_pay *
huawei skytone *
huawei hwphonefinder(emui6.0) *
CVE-2017-2705 LOW

Huawei P9 smartphones with software versions earlier before EVA-AL10C00B365, versions earlier before EVA-AL00C00B365, versions earlier before EVA-CL00C92B365, versions earlier before EVA-DL00C17B365, versions earlier before EVA-TL00C01B365 have a phone activation bypass vulnerability. Successful exploit could allow an unauthenticated attacker to bypass phone activation to settings page of the phone.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p9_firmware *
CVE-2017-2706 MEDIUM

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
CVE-2017-2707 MEDIUM

Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. An attacker tricks a user to save a rich media into message on the smart phone, which could be exploited to cause the attacker to delete message or fake user to send message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-494,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
CVE-2017-2708 MEDIUM

The 'Find Phone' function in Nice smartphones with software versions earlier before Nice-AL00C00B0135 has an authentication bypass vulnerability. An unauthenticated attacker may wipe and factory reset the phone by special steps. Due to missing authentication of the 'Find Phone' function, an attacker may exploit the vulnerability to bypass the 'Find Phone' function in order to use the phone normally.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei nice_firmware *
CVE-2017-2709 MEDIUM

HiGame with software earlier than 7.3.0 versions, SkyTone with software earlier than 8.1.1 versions have a DoS Vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, the attacker can send malformed packets to the device. Due to the lack of adequate input validation of APPs, which causes the APPs Denial of Service.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei skytone *
huawei higame *
CVE-2017-2710 LOW

BTV-W09C229B002CUSTC229D005,BTV-W09C233B029, earlier than BTV-W09C100B006CUSTC100D002 versions, earlier than BTV-W09C128B003CUSTC128D002 versions, earlier than BTV-W09C199B002CUSTC199D002 versions, earlier than BTV-W09C209B005CUSTC209D001 versions, earlier than BTV-W09C331B002CUSTC331D001 versions, earlier than CRR-L09C432B390 versions, earlier than CRR-L09C605B355CUSTC605D003 versions have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can perform some operations to update the Google account. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei beethoven-w09a_firmware btv-w09c233b029
huawei crr-l09_firmware *
huawei beethoven-w09a_firmware btv-w09c229b002custc229d005
huawei beethoven-w09a_firmware *
CVE-2017-2711 HIGH

P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p9_plus_firmware *
CVE-2017-2712 MEDIUM

S3300 V100R006C05 have an Ethernet in the First Mile (EFM) flapping vulnerability due to the lack of type-length-value (TLV) consistency check. An attacker may craft malformed packets and send them to a device to cause EFM flapping.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-417,

Products Affected

Vendor Product Version
huawei s3300_firmware v100r006c05
CVE-2017-2713 MEDIUM

HUAWEI P9 smartphones with software versions earlier before EVA-L09C432B383, versions earlier before EVA-L09C636B380, versions earlier before VIE-L09C432B370, versions earlier before VIE-L29C636B370 have an insufficient input validation vulnerability. An attacker could exploit this vulnerability to tamper with air interface signaling messages and obtain some communication information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p9_firmware *
CVE-2017-2714 HIGH

The GaussDB in FusionSphere OpenStack V100R005C10SPC705 and earlier versions has a buffer overflow vulnerability. An authenticated attacker on the LAN can exploit this vulnerability to execute arbitrary code or cause a denial of service (DoS) condition in the affected system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack *
CVE-2017-2715 LOW

The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to information leak.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei files *
CVE-2017-2716 HIGH

The camerafs driver in Mate 9 Versions earlier than MHA-AL00BC00B173 has buffer overflow vulnerability. An attacker tricks a user into installing a malicious application which has the system privilege of the Android system and sends a specific parameter to the driver of the smart phone, causing a system crash or privilege escalation.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
CVE-2017-2717 LOW

honor 8 Pro with software Duke-L09C10B120 and earlier versions,Duke-L09C432B120 and earlier versions,Duke-L09C636B120 and earlier versions has an integer overflow vulnerability. The attacker sends a response message to the device, which contains an illegal length field, it could produce an integer overflow and restart the modem system.

CVSS 2.0

Severity: LOW

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei honor_8_pro_firmware *
CVE-2017-2718 HIGH

FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. An attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
huawei fusionsphere_openstack v100r006c10
CVE-2017-2719 HIGH

FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. An attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
huawei fusionsphere_openstack v100r006c10rc2
CVE-2017-2720 MEDIUM

FusionSphere OpenStack V100R006C00 has an information exposure vulnerability. The software uses hard-coded cryptographic key to encrypt messages between certain components, which significantly increases the possibility that encrypted data may be recovered and results in information exposure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-798,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
CVE-2017-2721 LOW

Some Huawei smart phones with software Berlin-L21C10B130,Berlin-L21C185B133,Berlin-L21HNC10B131,Berlin-L21HNC185B140,Berlin-L21HNC432B151,Berlin-L22C636B160,Berlin-L22HNC636B130,Berlin-L22HNC675B150CUSTC675D001,Berlin-L23C605B131,Berlin-L24HNC567B110,FRD-L02C432B120,FRD-L02C635B130,FRD-L02C675B170CUSTC675D001,FRD-L04C567B162,FRD-L04C605B131,FRD-L09C10B130,FRD-L09C185B130,FRD-L09C432B131,FRD-L09C636B130,FRD-L14C567B162,FRD-L19C10B130,FRD-L19C432B131,FRD-L19C636B130 have a factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Swype Keyboard and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei berlin-l22hn_firmware berlin-l22hnc675b150custc675d001
huawei frd-l09_firmware frd-l09c10b130
huawei berlin-l21hn_firmware berlin-l21hnc432b151
huawei frd-l09_firmware frd-l09c636b130
huawei berlin-l21hn_firmware berlin-l21hnc10b131
huawei berlin-l23_firmware berlin-l23c605b131
huawei berlin-l21_firmware berlin-l21c185b133
huawei frd-l04_firmware frd-l04c567b162
huawei berlin-l21hn_firmware berlin-l21hnc185b140
huawei frd-l02_firmware frd-l02c675b170custc675d001
huawei frd-l09_firmware frd-l09c185b130
huawei frd-l19_firmware frd-l19c10b130
huawei frd-l14_firmware frd-l14c567b162
huawei frd-l09_firmware frd-l09c432b131
huawei frd-l02_firmware frd-l02c432b120
huawei frd-l04_firmware frd-l04c605b131
huawei berlin-l24hn_firmware berlin-l24hnc567b110
huawei berlin-l22hn_firmware berlin-l22hnc636b130
huawei frd-l02_firmware frd-l02c635b130
huawei berlin-l21_firmware berlin-l21c10b130
huawei berlin-l22_firmware berlin-l22c636b160
huawei frd-l19_firmware frd-l19c636b130
huawei frd-l19_firmware frd-l19c432b131
CVE-2017-2722 MEDIUM

DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, V100R003C00, V500R002C00 and V600R006C00,TP3106 with software V100R001C06 and V100R002C00,ViewPoint 9030 with software V100R011C02, V100R011C03,eCNS210_TD with software V100R004C10,eSpace 7950 with software V200R003C00 and V200R003C30,eSpace IAD with software V300R001C07SPCa00 and V300R002C01SPCb00,eSpace U1981 with software V100R001C20, V100R001C30, V200R003C00, V200R003C20 and V200R003C30 have an input validation vulnerability.A remote attacker may exploit this vulnerability by crafting a malformed packet and sending it to the device. A successful exploit could allow the attacker to cause a denial of service or execute arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei espace_iad_firmware v300r001c07spca00
huawei espace_u1981_firmware v100r001c30
huawei tp3106_firmware v100r002c00
huawei te60_firmware v100r001c01
huawei te60_firmware v100r003c00
huawei viewpoint_9030_firmware v100r011c03
huawei espace_iad_firmware v300r002c01spcb00
huawei te60_firmware v600r006c00
huawei ecns210_td_firmware v100r004c10
huawei espace_7950_firmware v200r003c00
huawei espace_u1981_firmware v200r003c00
huawei espace_u1981_firmware v100r001c20
huawei te60_firmware v100r001c10
huawei espace_7950_firmware v200r003c30
huawei viewpoint_9030_firmware v100r011c02
huawei espace_u1981_firmware v200r003c20
huawei espace_u1981_firmware v200r003c30
huawei tp3106_firmware v100r001c06
CVE-2017-2723 LOW

The Files APP 7.1.1.308 and earlier versions in some Huawei mobile phones has a vulnerability of plaintext storage of users' Safe passwords. An attacker with the root privilege of an Android system could forge the Safe to read users' plaintext Safe passwords, leading to information leak.

CVSS 2.0

Severity: LOW

Problem Type: CWE-312,

Products Affected

Vendor Product Version
huawei files *
CVE-2017-2724 HIGH

Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
CVE-2017-2725 HIGH

Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
CVE-2017-2726 HIGH

Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
CVE-2017-2727 MEDIUM

Huawei P9 smart phones with software versions earlier before EVA-AL00C00B365, versions earlier before EVA-AL10C00B365,Versions earlier before EVA-CL00C92B365, versions earlier before EVA-DL00C17B365, versions earlier before EVA-TL00C01B365 have a privilege escalation vulnerability. An unauthenticated attacker can bypass phone activation to user management page of the phone and create a new user. Successful exploit could allow the attacker operate part function of the phone.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p9_firmware *
CVE-2017-2728 MEDIUM

Some Huawei mobile phones Honor 6X Berlin-L22C636B150 and earlier versions have a Bluetooth unlock bypassing vulnerability. If a user has enabled the smart unlock function, an attacker can impersonate the user's Bluetooth device to unlock the user's mobile phone screen.uawei mobile phones have a Bluetooth unlock bypassing vulnerability due to the lack of validation on Bluetooth devices. If a user has enabled the smart unlock function, an attacker can impersonate the user's Bluetooth device to unlock the user's mobile phone screen.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
CVE-2017-2729 HIGH

The boot loaders in Honor 5A smart phones with software Versions earlier than CAM-TL00C01B193,Versions earlier than CAM-TL00HC00B193,Versions earlier than CAM-UL00C00B193 have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_5a_firmware *
huawei p8_lite_firmware *
CVE-2017-2730 LOW

HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and HUAWEI Tech Support APP (for IOS) versions earlier before 5.0.0 have an information leak vulnerability. When an iPhone with these APPs installed access the Wi-Fi hotpot built by attacker, the attacker can collect the information of iPhone mode and firmware version.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei hilink *
huawei tech_support *
CVE-2017-2731 HIGH

The vibrator service in P9 Plus smart phones with software versions earlier before VIE-AL10C00B386 has DoS vulnerability. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone vibrator service interface to crash the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p9_plus_firmware *
CVE-2017-2732 MEDIUM

Huawei Hilink APP Versions earlier before 5.0.25.306 has an information leak vulnerability. An attacker may trick a user into installing a malicious application and application can access Hilink APP data.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei hilink *
CVE-2017-2733 MEDIUM

Honor 6X smartphones with software versions earlier than BLN-AL10C00B357 and versions earlier than BLN-AL20C00B357 have an information leak vulnerability due to improper file permission configuration. An attacker tricks a user into installing a malicious application on the smart phone, and the application can get the file that keep the cipher text of the SIM card PIN.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
CVE-2017-2734 HIGH

P9 Plus smartphones with software versions earlier before VIE-AL10BC00B386 have a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a large number of memory allocation and the smart phone will be crash for memory exhaustion.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei p9_plus_firmware *
CVE-2017-2735 MEDIUM

TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user into installing a malicious application to call the interface and modify the system properties.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-749,

Products Affected

Vendor Product Version
huawei y6_pro_firmware *
CVE-2017-2736 MEDIUM

VCM5010 with software versions earlier before V100R002C50SPC100 has a command injection vulnerability. This is due to insufficient validation of user's input. An authenticated attacker could launch a command injection attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei vcm5010_firmware *
CVE-2017-2737 MEDIUM

VCM5010 with software versions earlier before V100R002C50SPC100 has an arbitrary file upload vulnerability. The software does not validate the files that uploaded. An authenticated attacker could upload arbitrary files to the system.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
huawei vcm5010_firmware *
CVE-2017-2738 HIGH

VCM5010 with software versions earlier before V100R002C50SPC100 has an authentication bypass vulnerability. This is due to improper implementation of authentication for accessing web pages. An unauthenticated attacker could bypass the authentication by sending a crafted HTTP request. 5010 with software versions earlier before V100R002C50SPC100 has an arbitrary file upload vulnerability. The software does not validate the files that uploaded. An authenticated attacker could upload arbitrary files to the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei vcm5010_firmware *
CVE-2017-2739 LOW

The upgrade package of Huawei Vmall APP Earlier than HwVmall 1.5.3.0 versions is transferred through HTTP. A man in the middle (MITM) can tamper with the upgrade package of Huawei Vmall APP, and to implant the malicious applications.

CVSS 2.0

Severity: LOW

Problem Type: CWE-494,

Products Affected

Vendor Product Version
huawei vmall *
CVE-2017-3216 HIGH

WiMAX routers based on the MediaTek SDK (libmtk) that use a custom httpd plugin are vulnerable to an authentication bypass allowing a remote, unauthenticated attacker to gain administrator access to the device by performing an administrator password change on the device via a crafted POST request.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-306,CWE-306,

Products Affected

Vendor Product Version
huawei hes-319m2w_firmware -
zyxel max218m_firmware -
mada soho_wireless_router_firmware -
zyxel max318m_firmware -
huawei hes-319m_firmware -
greenpacket ox350_firmware -
huawei hes-339m_firmware -
zte ox-330p_firmware -
zyxel max218m1w_firmware -
zyxel max218mw_firmware -
zyxel max338m_firmware -
huawei bm2022_firmware -
huawei hes-309m_firmware -
zyxel max308m_fimware -
CVE-2017-8117 HIGH

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8118 LOW

The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8119 HIGH

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8120 HIGH

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8121 MEDIUM

The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8122 HIGH

The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
CVE-2017-8123 HIGH

The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
CVE-2017-8124 HIGH

The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
CVE-2017-8125 MEDIUM

The UMA product with software V200R001 and V300R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch XSS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8126 HIGH

The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
CVE-2017-8127 MEDIUM

The UMA product with software V200R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch XSS attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei uma v200r001
CVE-2017-8128 HIGH

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8129 HIGH

The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit these vulnerabilities to gain elevated privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8130 MEDIUM

The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei uma v200r001
huawei uma v300r001
CVE-2017-8131 HIGH

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
huawei fusionsphere_openstack v100r006c10
CVE-2017-8132 HIGH

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
huawei fusionsphere_openstack v100r006c10
CVE-2017-8133 MEDIUM

Huawei iManager NetEco with software V600R008C00 and V600R008C10 has a command injection vulnerability. An authenticated, remote attacker could exploit this vulnerability to send malicious packets to a target device. Successful exploit could enable a low privileged user to execute commands that a high privileged user could execute, causing the files to be tampered with or deleted.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei neteco v600r008c10
huawei neteco v600r008c00
CVE-2017-8134 HIGH

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
huawei fusionsphere_openstack v100r006c10
CVE-2017-8135 HIGH

The FusionSphere OpenStack with software V100R006C00 and V100R006C10 has a command injection vulnerability due to the insufficient input validation on four TCP listening ports. An unauthenticated attacker can exploit the vulnerabilities to gain root privileges by sending some messages with malicious commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
huawei fusionsphere_openstack v100r006c10
CVE-2017-8136 MEDIUM

HedEx Earlier than V200R006C00 versions has an arbitrary file download vulnerability. An attacker could exploit it to download arbitrary files on a target device to cause information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei hedex_lite *
CVE-2017-8137 HIGH

HedEx Earlier than V200R006C00 versions has a dynamic link library (DLL) hijacking vulnerability due to calling the DDL file by accessing a relative path. An attacker could exploit this vulnerability to tamper with the DLL file, leading to DLL hijacking.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-426,

Products Affected

Vendor Product Version
huawei hedex_lite *
CVE-2017-8138 MEDIUM

HedEx Earlier than V200R006C00 versions has a cross-site request forgery (CSRF) vulnerability. An attacker could trick a user into accessing a website containing malicious scripts which may tamper with configurations and interrupt normal services.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
huawei hedex_lite *
CVE-2017-8139 MEDIUM

HedEx Earlier than V200R006C00 versions have the stored cross-site scripting (XSS) vulnerability. Attackers can exploit the vulnerability to plant malicious scripts into the configuration file to interrupt the services of legitimate users.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei hedex_lite *
CVE-2017-8140 HIGH

The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei p9_plus_firmware *
CVE-2017-8141 HIGH

The Touch Panel (TP) driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a memory double free vulnerability. An attacker with the root privilege of the Android system tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
CVE-2017-8142 HIGH

The Trusted Execution Environment (TEE) module driver of Mate 9 and Mate 9 Pro smart phones with software versions earlier than MHA-AL00BC00B221 and versions earlier than LON-AL00BC00B221 has a use after free (UAF) vulnerability. An attacker tricks a user into installing a malicious application, and the application can start multiple threads and try to create and free specific memory, which could triggers access memory after free it and causes a system crash or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei mate_9_pro_firmware *
CVE-2017-8143 HIGH

Wi-Fi driver of Honor 5C and P9 Lite Huawei smart phones with software versions earlier than NEM-L21C432B351 and versions earlier than VNS-L21C10B381 has a DoS vulnerability. An attacker may trick a user into installing a malicious application and the application can access invalid address of driver to crash the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p9_lite_firmware *
huawei honor_5c_firmware *
CVE-2017-8144 HIGH

Honor 5A,Honor 8 Lite,Mate9,Mate9 Pro,P10,P10 Plus Huawei smartphones with software the versions before CAM-L03C605B143CUSTC605D003,the versions before Prague-L03C605B161,the versions before Prague-L23C605B160,the versions before MHA-AL00C00B225,the versions before LON-AL00C00B225,the versions before VTR-AL00C00B167,the versions before VTR-TL00C01B167,the versions before VKY-AL00C00B167,the versions before VKY-TL00C01B167 have a resource exhaustion vulnerability due to configure setting. An attacker tricks a user into installing a malicious application, the application may turn on the device flash-light and rapidly drain the device battery.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-920,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei honor_8_lite_firmware *
huawei p10_firmware *
huawei mate_9_firmware *
huawei honor_5a_firmware *
huawei mate_9_pro_firmware *
CVE-2017-8145 MEDIUM

The call module of P10 and P10 Plus smartphones with software versions before VTR-AL00C00B167, versions before VTR-TL00C01B167, versions before VKY-AL00C00B167, versions before VKY-TL00C01B167 has a DoS vulnerability. An attacker may trick a user into installing a malicious application, and the application can send given parameter to call module to crash the call and data communication process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
CVE-2017-8146 MEDIUM

The call module of P10 and P10 Plus smartphones with software versions before VTR-AL00C00B167, versions before VTR-TL00C01B167, versions before VKY-AL00C00B167, versions before VKY-TL00C01B167 has a DoS vulnerability. An attacker may trick a user into installing a malicious application, and the application can send given parameter to call module to crash the call and data communication process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
CVE-2017-8147 MEDIUM

AC6005 V200R006C10SPC200,AC6605 V200R006C10SPC200,AR1200 with software V200R005C10CP0582T, V200R005C10HP0581T, V200R005C20SPC026T,AR200 with software V200R005C20SPC026T,AR3200 V200R005C20SPC026T,CloudEngine 12800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 5800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 6800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 7800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 8800 with software V100R006C00, V200R001C00,E600 V200R008C00,S12700 with software V200R005C00, V200R006C00, V200R007C00, V200R008C00,S1700 with software V100R006C00, V100R007C00, V200R006C00,S2300 with software V100R005C00, V100R006C00, V100R006C03, V100R006C05, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00,S2700 with software V100R005C00, V100R006C00, V100R006C03, V100R006C05, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00,S5300 with software V100R005C00, V100R006C00, V100R006C01, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S5700 with software V100R005C00, V100R006C00, V100R006C01, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S6300 with software V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R008C00,S6700 with software V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S7700 with software V100R003C00, V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S9300 with software V100R001C00, V100R002C00, V100R003C00, V100R006C00, V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R008C10,S9700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00,Secospace USG6600 V500R001C00SPC050 have a MaxAge LSA vulnerability due to improper OSPF implementation. When the device receives special LSA packets, the LS (Link Status) age would be set to MaxAge, 3600 seconds. An attacker can exploit this vulnerability to poison the route table and launch a DoS attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r002c00
huawei cloudengine_6800_firmware v100r005c10
huawei s5300_firmware v200r001c00
huawei s5700_firmware v200r002c00
huawei s6300_firmware v200r003c02
huawei cloudengine_7800_firmware v100r006c00
huawei s5300_firmware v200r007c00
huawei s6300_firmware v200r003c00
huawei s6700_firmware v200r005c00
huawei s2300_firmware v100r006c00
huawei cloudengine_5800_firmware v100r005c10
huawei s2300_firmware v200r003c10
huawei s6300_firmware v200r008c00
huawei cloudengine_6800_firmware v100r006c00
huawei s2300_firmware v100r006c05
huawei s6700_firmware v200r008c00
huawei cloudengine_7800_firmware v100r005c00
huawei s6300_firmware v200r003c10
huawei s1700_firmware v100r007c00
huawei s9700_firmware v200r003c00
huawei s6300_firmware v100r006c00
huawei s2700_firmware v100r006c03
huawei s2300_firmware v200r005c02
huawei s2700_firmware v200r007c00
huawei s6700_firmware v200r001c00
huawei s2700_firmware v200r005c03
huawei s2700_firmware v200r006c00
huawei s5700_firmware v200r003c10
huawei s2700_firmware v100r006c05
huawei ac6605_firmware v200r006c10spc200
huawei cloudengine_12800_firmware v100r006c00
huawei s7700_firmware v200r005c00
huawei s2700_firmware v100r006c00
huawei ar3200_firmware v200r005c20spc026t
huawei s5300_firmware v200r005c00
huawei s7700_firmware v100r006c00
huawei s12700_firmware v200r006c00
huawei ar200_firmware v200r005c20spc026t
huawei s5300_firmware v200r008c00
huawei s12700_firmware v200r008c00
huawei cloudengine_12800_firmware v100r005c10
huawei s9300_firmware v200r007c00
huawei s5700_firmware v200r006c00
huawei s6700_firmware v200r006c00
huawei s9700_firmware v200r001c00
huawei s5700_firmware v200r008c00
huawei secospace_usg6600_firmware v500r001c00
huawei ar1200_firmware v200r005c10cp0582t
huawei s9300_firmware v200r008c10
huawei cloudengine_6800_firmware v100r003c00
huawei s6700_firmware v100r006c00
huawei s7700_firmware v200r001c01
huawei ac6005_firmware v200r006c10spc200
huawei cloudengine_5800_firmware v100r005c00
huawei s6300_firmware v200r001c01
huawei s12700_firmware v200r007c00
huawei s5700_firmware v200r003c00
huawei s5300_firmware v100r006c01
huawei s9700_firmware v200r008c00
huawei s6300_firmware v200r005c00
huawei s2300_firmware v200r005c00
huawei s2700_firmware v200r003c10
huawei ar1200_firmware v200r005c10hp0581t
huawei s7700_firmware v200r008c00
huawei cloudengine_7800_firmware v100r003c00
huawei s9700_firmware v200r005c00
huawei s9700_firmware v200r006c00
huawei s2300_firmware v200r003c00
huawei s7700_firmware v200r006c00
huawei s5700_firmware v200r003c02
huawei s5700_firmware v100r005c00
huawei s2300_firmware v100r006c03
huawei s6300_firmware v200r001c00
huawei s5700_firmware v100r006c00
huawei s9300_firmware v200r008c00
huawei s5700_firmware v200r001c00
huawei s7700_firmware v200r001c00
huawei cloudengine_7800_firmware v100r005c10
huawei s2300_firmware v200r005c03
huawei s9300_firmware v200r002c00
huawei cloudengine_12800_firmware v100r005c00
huawei s5300_firmware v100r006c00
huawei s6700_firmware v200r003c02
huawei s5300_firmware v200r003c10
huawei s6700_firmware v200r003c00
huawei s7700_firmware v200r007c00
huawei s6700_firmware v200r002c00
huawei s2700_firmware v200r003c02
huawei s7700_firmware v200r002c00
huawei s5700_firmware v100r006c01
huawei s6700_firmware v200r001c01
huawei s2700_firmware v200r005c00
huawei s1700_firmware v200r006c00
huawei s9300_firmware v100r006c00
huawei s5300_firmware v200r002c00
huawei s2300_firmware v200r006c00
huawei s7700_firmware v100r003c00
huawei s9300_firmware v100r002c00
huawei cloudengine_5800_firmware v200r001c00
huawei s9700_firmware v200r007c00
huawei cloudengine_12800_firmware v200r001c00
huawei s2700_firmware v200r005c01
huawei s9300_firmware v200r006c00
huawei s9300_firmware v200r003c00
huawei cloudengine_6800_firmware v200r001c00
huawei cloudengine_12800_firmware v100r003c00
huawei s2300_firmware v200r005c01
huawei s12700_firmware v200r005c00
huawei s6300_firmware v200r002c00
huawei s2300_firmware v200r007c00
huawei s5700_firmware v200r007c00
huawei s9300_firmware v200r001c00
huawei s2300_firmware v200r003c02
huawei s1700_firmware v100r006c00
huawei cloudengine_5800_firmware v100r003c00
huawei s2300_firmware v200r008c00
huawei secospace_usg6600_firmware v500r001c30
huawei cloudengine_6800_firmware v100r005c00
huawei ar1200_firmware v200r005c20spc026t
huawei cloudengine_5800_firmware v100r006c00
huawei cloudengine_8800_firmware v200r001c00
huawei s5300_firmware v200r006c00
huawei s2700_firmware v100r005c00
huawei s5300_firmware v100r005c00
huawei s2300_firmware v100r005c00
huawei s5300_firmware v200r003c02
huawei s5700_firmware v200r005c00
huawei s7700_firmware v200r003c00
huawei cloudengine_7800_firmware v200r001c00
huawei s5300_firmware v200r001c01
huawei s6700_firmware v200r003c10
huawei s2700_firmware v200r005c02
huawei s9300_firmware v100r003c00
huawei s5300_firmware v200r003c00
huawei s2700_firmware v200r008c00
huawei e600_firmware v200r008c00
huawei s9300_firmware v100r001c00
huawei s2700_firmware v200r003c00
huawei s9300_firmware v200r005c00
huawei s5700_firmware v200r001c01
huawei cloudengine_8800_firmware v100r006c00
huawei s6700_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2017-8148 MEDIUM

Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the race condition cause null pointer accessing during the application access shared resource, which make the system reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei p9_firmware *
CVE-2017-8149 HIGH

The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 have an out-of-bounds memory access vulnerability due to the lack of parameter validation. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. the APP can modify specific data to cause buffer overflow in the next system reboot, causing out-of-bounds memory read which can continuous system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
CVE-2017-8150 HIGH

The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 have an arbitrary memory write vulnerability due to the lack of parameter validation. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause arbitrary memory writing in the next system reboot, causing continuous system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
huawei p9_firmware *
huawei p8_lite_firmware *
CVE-2017-8151 HIGH

Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have an authentication bypass vulnerability due to the improper design of some components. An attacker can get a user's smart phone and install malicious apps in the mobile phone, allowing the attacker to reset the password and fingerprint of the phone without authentication.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_5s_firmware *
CVE-2017-8152 MEDIUM

Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have a Factory Reset Protection (FRP) bypass security vulnerability due to the improper design. An attacker can access factory reset page without authorization by only dial with special code. The attacker can exploit this vulnerability to restore the phone to factory settings.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-358,

Products Affected

Vendor Product Version
huawei honor_5s_firmware *
CVE-2017-8153 MEDIUM

Huawei VMall (for Android) with the versions before 1.5.8.5 have a privilege elevation vulnerability due to improper design. An attacker can trick users into installing a malicious app which can send out HTTP requests and execute JavaScript code in web pages without obtaining the Internet access permission. Successful exploit could lead to resource occupation or information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-275,

Products Affected

Vendor Product Version
huawei vmall *
CVE-2017-8154 LOW

The Themes App Honor 8 Lite Huawei mobile phones with software of versions before Prague-L31C576B172, versions before Prague-L31C530B160, versions before Prague-L31C432B180 has a man-in-the-middle (MITM) vulnerability due to the use of the insecure HTTP protocol for theme download. An attacker may exploit this vulnerability to tamper with downloaded themes.

CVSS 2.0

Severity: LOW

Problem Type: CWE-319,

Products Affected

Vendor Product Version
huawei honor_8_lite_firmware *
CVE-2017-8155 HIGH

The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on a certain port. After accessing the network between the indoor and outdoor units of the CPE, an attacker can deliver commands to the specific port of the outdoor unit and execute them without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei b2338-168_firmware v100r001c00
CVE-2017-8156 HIGH

The outdoor unit of Customer Premise Equipment (CPE) product B2338-168 V100R001C00 has a no authentication vulnerability on the serial port. An attacker can access the serial port on the circuit board of the outdoor unit and log in to the CPE without authentication. Successful exploit could allow the attacker to take control over the outdoor unit.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei b2338-168_firmware v100r001c00
CVE-2017-8157 MEDIUM

OceanStor 5800 V3 with software V300R002C00 and V300R002C10, OceanStor 6900 V3 V300R001C00 has an information leakage vulnerability. Products use TLS1.0 to encrypt. Attackers can exploit TLS1.0's vulnerabilities to decrypt data to obtain sensitive information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei oceanstor_5800_v3_firmware v300r002c10
huawei oceanstor_6900_v3_firmware v300r001c00
huawei oceanstor_5800_v3_firmware v300r002c00
CVE-2017-8158 MEDIUM

FusionCompute V100R005C00 and V100R005C10 have an improper authorization vulnerability due to improper permission settings for a certain file on the host machine. An authenticated attacker could create a large number of virtual machine (VM) processes to exhaust system resources. Successful exploit could make new VMs unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
huawei fusioncompute v100r005c00
huawei fusioncompute v100r005c10
CVE-2017-8159 HIGH

Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB-W09C233B012 have a type confusion vulnerability. The program initializes a variable using one type, but it later accesses that variable using a type that is different with the original type when do certain register operation. Successful exploit could result in buffer overflow then may cause malicious code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-704,

Products Affected

Vendor Product Version
huawei kobe-l09ahn_firmware kob-l09c233b017
huawei agassi-w09hn_firmware ags-w09c233b019
huawei kobe-w09chn_firmware kob-w09c233b012
huawei agassi-l09hn_firmware ags-l09c233b019
CVE-2017-8160 HIGH

The Madapt Driver of some Huawei smart phones with software Earlier than Vicky-AL00AC00B172 versions,Vicky-AL00CC768B122,Vicky-TL00AC01B167,Earlier than Victoria-AL00AC00B172 versions,Victoria-TL00AC00B123,Victoria-TL00AC01B167 has a use after free (UAF) vulnerability. An attacker can trick a user to install a malicious application which has a high privilege to exploit this vulnerability, Successful exploitation may cause arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei victoria-al00a_firmware *
huawei vicky-tl00a_firmware vicky-tl00ac01b167
huawei victoria-tl00a_firmware victoria-tl00ac00b123
huawei vicky-al00c_firmware vicky-al00cc768b122
huawei vicky-al00a_firmware *
huawei victoria-tl00a_firmware victoria-tl00ac01b167
CVE-2017-8161 MEDIUM

EVA-L09 smartphones with software Earlier than EVA-L09C25B150CUSTC25D003 versions,Earlier than EVA-L09C440B140 versions,Earlier than EVA-L09C464B361 versions,Earlier than EVA-L09C675B320CUSTC675D004 versions have Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the Swype and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei eva-l09 *
CVE-2017-8162 MEDIUM

AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR150-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR160 with software V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR200 with software V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30,AR200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR2200 with software V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR2200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30,AR510 with software V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30,NetEngine16EX with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,SMC2.0 with software V100R003C10, V100R005C00, V500R002C00, V600R006C00,SRG1300 with software V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30,SRG2300 with software V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30,SRG3300 with software V200R006C10, V200R007C00, V200R008C20, V200R008C30 have a DoS vulnerability. Due to incorrect malformed message processing logic, an authenticated, remote attacker could send specially crafted message to the target device.Successful exploit of the vulnerability could cause stack overflow and make a service unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar150-s_firmware v200r006c10
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar510_firmware v200r006c12
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei ar160_firmware v200r007c01
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar150_firmware v200r008c20
huawei ar200-s_firmware v200r008c30
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar3200_firmware v200r008c10
huawei ar510_firmware v200r006c13
huawei ar150_firmware v200r007c01
huawei ar1200-s_firmware v200r007c00
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei ar510_firmware v200r006c17
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar160_firmware v200r008c30
huawei smc2.0_firmware v500r002c00
huawei ar2200_firmware v200r008c30
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar510_firmware v200r008c20
huawei ar160_firmware v200r007c02
huawei smc2.0_firmware v600r006c00
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei srg3300_firmware v200r008c30
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar510_firmware v200r008c30
huawei ar200-s_firmware v200r008c20
huawei netengine16ex_firmware v200r008c30
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r008c20
huawei srg3300_firmware v200r007c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar510_firmware v200r006c10
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei smc2.0_firmware v100r005c00
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar510_firmware v200r007c00
huawei ar1200_firmware v200r008c20
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei ar510_firmware v200r006c16
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar200_firmware v200r007c01
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar2200_firmware v200r007c00
huawei ar1200_firmware v200r008c30
huawei srg1300_firmware v200r007c00
huawei ar120-s_firmware v200r008c20
CVE-2017-8163 MEDIUM

AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR150-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR160 with software V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR200 with software V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30,AR200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR2200 with software V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR2200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR3200 with software V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30,AR510 with software V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30,NetEngine16EX with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,SMC2.0 with software V100R003C10, V100R005C00, V500R002C00, V600R006C00,SRG1300 with software V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30,SRG2300 with software V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30,SRG3300 with software V200R006C10, V200R007C00, V200R008C20, V200R008C30 have an out-of-bounds read vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send specially crafted message to the target device.Successful exploit of the vulnerability could cause out-of-bounds read and system crash.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar150-s_firmware v200r006c10
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ar510_firmware v200r006c12
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei ar160_firmware v200r007c01
huawei srg3300_firmware v200r006c10
huawei ar3200_firmware v200r008c30
huawei ar150_firmware v200r008c20
huawei ar200-s_firmware v200r008c30
huawei ar2200_firmware v200r007c02
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar3200_firmware v200r006c11
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar3200_firmware v200r008c10
huawei ar510_firmware v200r006c13
huawei ar150_firmware v200r007c01
huawei ar1200-s_firmware v200r007c00
huawei ar150_firmware v200r007c02
huawei ar1200_firmware v200r007c00
huawei ar510_firmware v200r006c17
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar1200_firmware v200r007c01
huawei ar150_firmware v200r008c30
huawei ar2200_firmware v200r006c13
huawei ar150-s_firmware v200r007c00
huawei ar160_firmware v200r008c30
huawei smc2.0_firmware v500r002c00
huawei ar2200_firmware v200r008c30
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c10
huawei srg1300_firmware v200r007c02
huawei ar200-s_firmware v200r006c10
huawei srg2300_firmware v200r007c02
huawei ar1200_firmware v200r007c02
huawei ar510_firmware v200r008c20
huawei ar160_firmware v200r007c02
huawei smc2.0_firmware v600r006c00
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei srg3300_firmware v200r008c30
huawei ar150-s_firmware v200r008c30
huawei ar2200-s_firmware v200r007c00
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei ar510_firmware v200r008c30
huawei ar200-s_firmware v200r008c20
huawei netengine16ex_firmware v200r008c30
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei srg3300_firmware v200r008c20
huawei srg3300_firmware v200r007c00
huawei ar2200_firmware v200r007c01
huawei ar2200_firmware v200r008c20
huawei ar510_firmware v200r006c10
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei smc2.0_firmware v100r005c00
huawei ar1200_firmware v200r006c10
huawei srg1300_firmware v200r008c30
huawei ar160_firmware v200r006c12
huawei ar2200_firmware v200r006c16pwe
huawei ar510_firmware v200r007c00
huawei ar1200_firmware v200r008c20
huawei ar1200-s_firmware v200r008c30
huawei ar200_firmware v200r008c30
huawei ar510_firmware v200r006c16
huawei srg2300_firmware v200r008c20
huawei ar1200_firmware v200r006c13
huawei ar200_firmware v200r007c01
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar2200_firmware v200r007c00
huawei ar1200_firmware v200r008c30
huawei srg1300_firmware v200r007c00
huawei ar120-s_firmware v200r008c20
CVE-2017-8164 MEDIUM

Some Huawei smart phones with software EVA-L09C34B142; EVA-L09C40B196; EVA-L09C432B210; EVA-L09C440B138; EVA-L09C464B150; EVA-L09C530B127; EVA-L09C55B190; EVA-L09C576B150; EVA-L09C635B221; EVA-L09C636B193; EVA-L09C675B130; EVA-L09C688B143; EVA-L09C703B160; EVA-L09C706B145; EVA-L09GBRC555B171; EVA-L09IRLC368B160; EVA-L19C10B190; EVA-L19C185B220; EVA-L19C20B160; EVA-L19C432B210; EVA-L19C636B190; EVA-L29C20B160; EVA-L29C636B191; EVA-TL00C01B198; VIE-L09C02B131; VIE-L09C109B181; VIE-L09C113B170; VIE-L09C150B170; VIE-L09C25B120; VIE-L09C40B181; VIE-L09C432B181; VIE-L09C55B170; VIE-L09C605B131; VIE-L09ITAC555B130; VIE-L29C10B170; VIE-L29C185B181; VIE-L29C605B131; VIE-L29C636B202 have a denial of service (DoS) vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Successful exploitation can cause camera application unusable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei eva-l19_firmware eva-l19c432b210
huawei vie-l29_firmware vie-l29c10b170
huawei eva-l09_firmware eva-l09c02b143
huawei eva-l09_firmware eva-l09c675b130
huawei eva-l09_firmware eva-l09c150b192
huawei eva-tl00_firmware eva-tl00c01b198
huawei eva-l09_firmware eva-l09irlc368b160
huawei eva-l09_firmware eva-l09c688b143
huawei vie-l09_firmware vie-l09c25b120
huawei vie-l09_firmware vie-l09itac555b130
huawei eva-l09_firmware eva-l09c33b191
huawei eva-l09_firmware eva-l09c706b145
huawei vie-l09_firmware vie-l09c55b170
huawei eva-l09_firmware eva-l09gbrc555b171
huawei eva-l09_firmware eva-l09c432b210
huawei vie-l09_firmware vie-l09c605b131
huawei eva-l09_firmware eva-l09c185b180
huawei eva-l09_firmware eva-l09c576b150
huawei vie-l09_firmware vie-l09c150b170
huawei eva-al10_firmware eva-al10c00b198
huawei eva-l09_firmware eva-l09c178b161
huawei eva-l09_firmware eva-l09c440b138
huawei eva-l09_firmware eva-l09c109b196
huawei vie-l29_firmware vie-l29c185b181
huawei eva-l09_firmware eva-l09c464b150
huawei eva-l09_firmware eva-l09c22b140
huawei eva-l09_firmware eva-l09c25b133
huawei eva-l09_firmware eva-l09c55b190
huawei eva-l19_firmware eva-l19c185b220
huawei eva-l09_firmware eva-l09c636b193
huawei vie-l09_firmware vie-l09c113b170
huawei eva-l09_firmware eva-l09c530b127
huawei vie-l09_firmware vie-l09c432b181
huawei vie-l09_firmware vie-l09c40b181
huawei eva-l29_firmware eva-l29c636b191
huawei eva-l09_firmware eva-l09c09b150
huawei vie-l09_firmware vie-l09c02b131
huawei eva-l09_firmware eva-l09c40b196
huawei vie-l29_firmware vie-l29c605b131
huawei eva-dl00_firmware eva-dl00c17b198
huawei eva-l09_firmware eva-l09c703b160
huawei eva-l09_firmware eva-l09c34b142
huawei eva-l19_firmware eva-l19c636b190
huawei vie-l09_firmware vie-l09c109b181
huawei eva-l19_firmware eva-l19c10b190
huawei eva-cl00_firmware eva-cl00c92b198
huawei vie-l29_firmware vie-l29c636b202
huawei eva-l09_firmware eva-l09c635b221
huawei eva-l29_firmware eva-l29c20b160
huawei eva-l09_firmware eva-l09c113b150
huawei eva-l19_firmware eva-l19c20b160
CVE-2017-8165 MEDIUM

Mate 9 Huawei smart phones with versions earlier than MHA-AL00BC00B233 have a sensitive information leak vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Successful exploitation may cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
CVE-2017-8166 HIGH

Huawei mobile phones Honor V9 with the software versions before Duke-AL20C00B195 have an App Lock bypass vulnerability. An attacker could perform specific operations to bypass the App Lock to use apps on a target mobile phone.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_v9_firmware *
CVE-2017-8167 HIGH

Huawei firewall products USG9500 V500R001C50 has a DoS vulnerability.A remote attacker who controls the peer device could exploit the vulnerability by sending malformed IKE packets to the target device. Successful exploit of the vulnerability could cause the device to restart.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c50
CVE-2017-8168 LOW

FusionSphere OpenStack with software V100R006C00SPC102(NFV) and V100R006C10 have an information leak vulnerability. Due to an incorrect configuration item, the information transmitted by a transmission channel is not encrypted. An attacker accessing the internal network may obtain sensitive information transmitted.

CVSS 2.0

Severity: LOW

Problem Type: CWE-311,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c10
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8169 HIGH

Huawei smart phones with software earlier than VIE-L09C40B360 versions have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege; the APP can send a specific parameter to the smart phone, causing the smartphone restart or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei vie-l09_firmware *
CVE-2017-8170 HIGH

Huawei smart phones with software earlier than VIE-L09C40B360 versions have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege; the APP can send a specific parameter to the smart phone, causing the smartphone restart or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei vie-l09_firmware *
CVE-2017-8171 MEDIUM

Huawei smart phones with software earlier than Vicky-AL00AC00B172D versions have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the Talkback mode and can perform some operations to bypass the Google account verification. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
CVE-2017-8172 HIGH

Isub service in P10 Plus and P10 smart phones with earlier than VKY-AL00C00B157 versions and earlier than VTR-AL00C00B157 versions has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a out-of-bounds array access that results in smart phone restart.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-129,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei p10_firmware *
CVE-2017-8173 LOW

Maya-L02,VKY-L09,VTR-L29,Vicky-AL00A,Victoria-AL00A,Warsaw-AL00 smart phones with software of earlier than Maya-L02C636B126 versions,earlier than VKY-L29C10B151 versions,earlier than VTR-L29C10B151 versions,earlier than Vicky-AL00AC00B162 versions,earlier than Victoria-AL00AC00B167 versions,earlier than Warsaw-AL00C00B200 versions have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by some secret code and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei maya-l02_firmware *
huawei victoria-al00a_firmware *
huawei vky-l09_firmware *
huawei vky-l29_firmware *
huawei vicky-al00a_firmware *
huawei warsaw-al00_firmware *
CVE-2017-8174 MEDIUM

Huawei USG6300 V100R001C30SPC300 and USG6600 with software of V100R001C30SPC500,V100R001C30SPC600,V100R001C30SPC700,V100R001C30SPC800 have a weak algorithm vulnerability. Attackers may exploit the weak algorithm vulnerability to crack the cipher text and cause confidential information leaks on the transmission links.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-326,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v100r001c30spc700
huawei secospace_usg6600_firmware v100r001c30spc800
huawei secospace_usg6300_firmware v100r001c30spc300
huawei secospace_usg6600_firmware v100r001c30spc500
huawei secospace_usg6600_firmware v100r001c30spc600
CVE-2017-8175 HIGH

The Bastet of some Huawei mobile phones with software earlier than Vicky-AL00AC00B167 versions, earlier than Victoria-AL00AC00B167 versions, earlier than Warsaw-AL00C00B191 versions has an insufficient input validation vulnerability due to the lack of parameter validation. An attacker may trick a user into installing a malicious APP. The APP can modify specific parameter to cause system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei vicky-al00a *
huawei victoria-al00a *
huawei warsaw-al00 *
CVE-2017-8176 MEDIUM

Huawei IPTV STB with earlier than IPTV STB V100R003C01LMYTa6SPC001 versions has an authentication bypass vulnerability. An attacker could exploit this vulnerability to access the serial interface and modify the configuration. Successful exploit could lead to the authentication bypass and view channels by free.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei iptv_stb_firmware *
CVE-2017-8177 MEDIUM

Huawei APP HiWallet earlier than 5.0.3.100 versions do not support signature verification for APK file. An attacker could exploit this vulnerability to hijack the APK and upload modified APK file. Successful exploit could lead to the APP is hijacking.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,

Products Affected

Vendor Product Version
huawei hiwallet *
CVE-2017-8178 LOW

Huawei Email APP Vicky-AL00 smartphones with software of earlier than VKY-AL00C00B171 versions has a stored cross-site scripting vulnerability. A remote attacker could exploit this vulnerability to send email that storing malicious code to a smartphone and waiting for a user to access this email that triggers execution of the code. An exploit could allow the attacker to execute arbitrary script code on the affected device.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei vicky-al00_firmware *
CVE-2017-8179 MEDIUM

The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a buffer overflow vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mtk_platform_smart_phone_firmware *
CVE-2017-8180 MEDIUM

The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a buffer overflow vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mtk_platform_smart_phone_firmware *
CVE-2017-8181 MEDIUM

The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a arbitrary memory write vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mtk_platform_smart_phone_firmware *
CVE-2017-8182 MEDIUM

MTK platform in Huawei smart phones with software of earlier than Nice-AL00C00B160 versions, earlier than Nice-AL10C00B140 versions has a out-of-bound read vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter and cause to memory out-of-bound read.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei mtk_platform_smart_phone_firmware *
CVE-2017-8183 MEDIUM

MTK platform in Huawei smart phones with software of earlier than Nice-AL00C00B160 versions, earlier than Nice-AL10C00B140 versions has a any memory access vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to cause to any memory access vulnerabilities, leading to sensitive information leakage.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei mtk_platform_smart_phone_firmware *
CVE-2017-8184 MEDIUM

MTK platform in Huawei smart phones with software of earlier than Nice-AL00C00B160 versions, earlier than Nice-AL10C00B140 versions has a any memory access vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to cause to any memory access vulnerabilities, leading to sensitive information leakage.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei mtk_platform_smart_phone_firmware *
CVE-2017-8185 HIGH

ME906s-158 earlier than ME906S_Installer_13.1805.10.3 versions has a privilege elevation vulnerability. An attacker could exploit this vulnerability to modify the configuration information containing malicious files and trick users into executing the files, resulting in the execution of arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei me906s-158_firmware *
CVE-2017-8186 HIGH

The Bastet of some Huawei mobile phones with software of earlier than MHA-AL00BC00B231 versions has a DOS vulnerability due to the lack of parameter validation. An attacker may trick a user into installing a malicious APP. The APP can modify specific parameter to cause system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mha-al00a *
CVE-2017-8187 MEDIUM

Huawei FusionSphere OpenStack V100R006C00SPC102(NFV) has a privilege escalation vulnerability. Due to improper privilege restrictions, an attacker with high privilege may obtain the other users' certificates. Successful exploit may cause privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack_firmware v100r006c00spc102(nfv)
CVE-2017-8188 MEDIUM

FusionSphere OpenStack V100R006C00SPC102(NFV)has a command injection vulnerability. Due to lack of validation, an attacker with high privilege may inject malicious code into some module of the affected products, causing code execution.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8189 LOW

FusionSphere OpenStack V100R006C00SPC102(NFV)has a path traversal vulnerability. Due to insufficient path validation, an attacker with high privilege may exploit this vulnerability to cover some files, causing services abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8190 MEDIUM

FusionSphere OpenStack V100R006C00SPC102(NFV)has an improper verification of cryptographic signature vulnerability. The software does not verify the cryptographic signature. An attacker with high privilege may exploit this vulnerability to inject malicious software.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8191 MEDIUM

FusionSphere OpenStack V100R006C00SPC102(NFV)has a week cryptographic algorithm vulnerability. Attackers may exploit the vulnerability to crack the cipher text and cause information leak on the transmission links.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8192 MEDIUM

FusionSphere OpenStack V100R006C00 has an improper authorization vulnerability. Due to improper authorization, an attacker with low privilege may exploit this vulnerability to obtain the operation authority of some specific directory, causing privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00
CVE-2017-8193 HIGH

The FusionSphere OpenStack V100R006C00SPC102(NFV) has a command injection vulnerability. Due to the insufficient input validation on one port, an authenticated, local attacker may exploit the vulnerability to gain root privileges by sending message with malicious commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8194 MEDIUM

The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability. Due to improper authentication on one port, an authenticated, remote attacker may exploit the vulnerability to execute more operations by send a crafted rest message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8195 MEDIUM

The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability. Due to improper authentication on one port, an authenticated, remote attacker may exploit the vulnerability to execute more operations by send a crafted rest message.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack v100r006c00spc102(nfv)
CVE-2017-8196 MEDIUM

FusionSphere V100R006C00SPC102(NFV) has an incorrect authorization vulnerability. An authenticated attacker could execute commands that he/she should have had no permission to perform, thereby querying, modifying, and deleting certain service data and making the service unavailable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei fusionsphere v100r006c00spc102(nfv)
CVE-2017-8197 HIGH

FusionSphere V100R006C00SPC102(NFV) has a command injection vulnerability. An authenticated, remote attacker could craft packets with malicious strings and send them to a target device. Successful exploit could allow the attacker to launch a command injection attack and execute system commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusionsphere v100r006c00spc102(nfv)
CVE-2017-8198 MEDIUM

FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability. An authenticated, remote attacker could craft interface messages carrying malicious SQL statements and send them to a target device. Successful exploit could allow the attacker to launch an SQL injection attack and execute SQL commands.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
huawei fusionsphere v100r006c00spc102(nfv)
CVE-2017-8199 MEDIUM

MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an out-of-bounds read vulnerability in H323 protocol. An attacker logs in to the system as a user and send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause process reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei tp3106_firmware v100r002c00
huawei max_presence_firmware v100r001c00
huawei tp3206_firmware v100r002c00
CVE-2017-8200 MEDIUM

MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an out-of-bounds read vulnerability in H323 protocol. An attacker logs in to the system as a user and send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause process reboot.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei tp3106_firmware v100r002c00
huawei max_presence_firmware v100r001c00
huawei tp3206_firmware v100r002c00
CVE-2017-8201 MEDIUM

MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an a memory leak vulnerability in H323 protocol. An attacker logs in to the system as a user and send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit could cause a memory leak and eventual denial of service (DoS) condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei tp3106_firmware v100r002c00
huawei max_presence_firmware v100r001c00
huawei tp3206_firmware v100r002c00
CVE-2017-8202 HIGH

The CameraISP driver of some Huawei smart phones with software of versions earlier than Prague-AL00AC00B205,versions earlier than Prague-AL00BC00B205,versions earlier than Prague-AL00CC00B205,versions earlier than Prague-TL00AC01B205,versions earlier than Prague-TL10AC01B205 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP, the APP can send a specific parameter to the CameraISP driver of the smart phone, causing system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei prague-al00b_firmware *
huawei prague-tl00a_firmware *
huawei prague-al00a_firmware *
huawei prague-al00c_firmware *
huawei prague-tl10a_firmware *
CVE-2017-8203 MEDIUM

The Bastet Driver of Nova 2 Plus,Nova 2 Huawei smart phones with software of Versions earlier than BAC-AL00C00B173,Versions earlier than PIC-AL00C00B173 has a use after free (UAF) vulnerability. An attacker can convince a user to install a malicious application which has a high privilege to exploit this vulnerability, Successful exploitation may cause arbitrary code execution.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei nova_2_firmware *
huawei nova_2_plus_firmware *
CVE-2017-8204 HIGH

The Bastet driver of Honor 9 Huawei smart phones with software of versions earlier than Stanford-AL10C00B175 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege; the APP can send a specific parameter to the driver of the smart phone, causing arbitrary code execution

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_9_firmware *
CVE-2017-8205 HIGH

The Bastet driver of Honor 9 Huawei smart phones with software of versions earlier than Stanford-AL10C00B175 has integer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege; the APP can send a specific parameter to the driver of the smart phone, causing arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei honor_9_firmware *
CVE-2017-8206 HIGH

HONOR 7 Lite mobile phones with software of versions earlier than NEM-L21C432B352 have an App Lock bypass vulnerability. An attacker could perform specific operations to bypass the App Lock to use apps on a target mobile phone temporarily.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_7_lite_firmware *
CVE-2017-8207 HIGH

The driver of honor 5C, honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
huawei honor_5c_firmware *
CVE-2017-8208 HIGH

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
huawei honor_5c_firmware *
CVE-2017-8209 HIGH

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
huawei honor_5c_firmware *
CVE-2017-8210 HIGH

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
huawei honor_5c_firmware *
CVE-2017-8211 HIGH

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
huawei honor_5c_firmware *
CVE-2017-8212 HIGH

The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei honor_6x_firmware *
huawei honor_5c_firmware *
CVE-2017-8213 MEDIUM

Huawei SMC2.0 with software of V100R003C10, V100R005C00SPC100, V100R005C00SPC101B001T, V100R005C00SPC102, V100R005C00SPC103, V100R005C00SPC200, V100R005C00SPC201T, V500R002C00, V600R006C00 has an input validation vulnerability when handle TLS and DTLS handshake with certificate. Due to the insufficient validation of received PKI certificates, remote attackers could exploit this vulnerability to crash the TLS module.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
huawei smc2.0_firmware v100r005c00spc200
huawei smc2.0_firmware v500r002c00
huawei smc2.0_firmware v100r005c00spc103
huawei smc2.0_firmware v600r006c00
huawei smc2.0_firmware v100r005c00spc100
huawei smc2.0_firmware v100r005c00spc101b001t
huawei smc2.0_firmware v100r005c00spc201t
huawei smc2.0_firmware v100r003c10
huawei smc2.0_firmware v100r005c00spc102
CVE-2017-8214 HIGH

Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B191, versions earlier than Duke-TL30C01B191, versions earlier than Picasso-AL00C00B162, versions earlier than Picasso-TL00C01B162 , versions earlier than Barca-AL00C00B162, versions earlier than Barca-TL00C00B162, versions earlier than EVA-AL10C00B396SP03, versions earlier than EVA-CL00C92B396, versions earlier than EVA-DL00C17B396, versions earlier than EVA-TL00C01B396 , versions earlier than Vicky-AL00AC00B172, versions earlier than Toronto-AL00AC00B191, versions earlier than Toronto-TL10C01B191 have an unlock code verification bypassing vulnerability. An attacker with the root privilege of a mobile can exploit this vulnerability to bypass the unlock code verification and unlock the mobile phone bootloader.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei nova_2_firmware *
huawei p10_plus_firmware *
huawei nova_2_plus_firmware *
huawei honor_8_firmware *
huawei honor_v9_firmware *
huawei honor_9_firmware *
huawei honor_v8_firmware *
huawei toronto_firmware *
huawei p9_firmware *
CVE-2017-8215 HIGH

Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B191, versions earlier than Duke-TL30C01B191, versions earlier than Picasso-AL00C00B162, versions earlier than Picasso-TL00C01B162 , versions earlier than Barca-AL00C00B162, versions earlier than Barca-TL00C00B162, versions earlier than EVA-AL10C00B396SP03, versions earlier than EVA-CL00C92B396, versions earlier than EVA-DL00C17B396, versions earlier than EVA-TL00C01B396 , versions earlier than Vicky-AL00AC00B172, versions earlier than Toronto-AL00AC00B191, versions earlier than Toronto-TL10C01B191 have a permission control vulnerability. An attacker with the system privilege of a mobile can exploit this vulnerability to bypass the unlock code verification and unlock the mobile phone bootloader.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei nova_2_firmware *
huawei p10_plus_firmware *
huawei nova_2_plus_firmware *
huawei honor_8_firmware *
huawei honor_v9_firmware *
huawei honor_9_firmware *
huawei honor_v8_firmware *
huawei toronto_firmware *
huawei p9_firmware *
CVE-2017-8216 HIGH

Warsaw Huawei Smart phones with software of versions earlier than Warsaw-AL00C00B180, versions earlier than Warsaw-TL10C01B180 have a permission control vulnerability. Due to improper authorization on specific processes, an attacker with the root privilege of a mobile Android system can exploit this vulnerability to obtain some information of the user.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei p10_lite_firmware *
CVE-2018-7899 HIGH

The Mali Driver of Huawei Berkeley-AL20 and Berkeley-BD smart phones with software Berkeley-AL20 8.0.0.105(C00), 8.0.0.111(C00), 8.0.0.112D(C00), 8.0.0.116(C00), 8.0.0.119(C00), 8.0.0.119D(C00), 8.0.0.122(C00), 8.0.0.132(C00), 8.0.0.132D(C00), 8.0.0.142(C00), 8.0.0.151(C00), Berkeley-BD 1.0.0.21, 1.0.0.22, 1.0.0.23, 1.0.0.24, 1.0.0.26, 1.0.0.29 has a double free vulnerability. An attacker can trick a user to install a malicious application and exploit this vulnerability when in the exception handling process. Successful exploitation may cause system reboot.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei berkeley-al20_firmware 8.0.0.151(c00)
huawei berkeley-al20_firmware 8.0.0.132(c00)
huawei berkeley-al20_firmware 8.0.0.142(c00)
huawei berkeley-bd_firmware 1.0.0.21
huawei berkeley-al20_firmware 8.0.0.105(c00)
huawei berkeley-bd_firmware 1.0.0.22
huawei berkeley-al20_firmware 8.0.0.111(c00)
huawei berkeley-al20_firmware 8.0.0.112d(c00)
huawei berkeley-al20_firmware 8.0.0.119(c00)
huawei berkeley-bd_firmware 1.0.0.26
huawei berkeley-bd_firmware 1.0.0.24
huawei berkeley-al20_firmware 8.0.0.119d(c00)
huawei berkeley-al20_firmware 8.0.0.122(c00)
huawei berkeley-al20_firmware 8.0.0.116(c00)
huawei berkeley-al20_firmware 8.0.0.132d(c00)
huawei berkeley-bd_firmware 1.0.0.29
huawei berkeley-bd_firmware 1.0.0.23
CVE-2018-7900 MEDIUM

There is an information leak vulnerability in some Huawei HG products. An attacker may obtain information about the HG device by exploiting this vulnerability.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei hg8010h_firmware -
huawei hg8040h_firmware -
huawei hg8110h_firmware -
huawei hg8240h_firmware -
huawei hg8045q_firmware -
huawei hg8242h_firmware -
CVE-2018-7901 MEDIUM

RCS module in Huawei ALP-AL00B smart phones with software versions earlier than 8.0.0.129, BLA-AL00B smart phones with software versions earlier than 8.0.0.129 has a remote control vulnerability. An attacker can trick a user to install a malicious application. When the application connects with RCS for the first time, it needs user to manually click to agree. In addition, the attacker needs to obtain the key that RCS uses to authenticate the application. Successful exploitation may cause the attacker to control keyboard remotely.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei bla-al00b_firmware *
huawei alp-al00b_firmware *
CVE-2018-7902 MEDIUM

Huawei 1288H V5 and 288H V5 with software of V100R005C00 have a JSON injection vulnerability. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Due to insufficient verification of the input, this could be exploited to obtain the management privilege of the system.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware v100r005c00
huawei 2288h_v5_firmware v100r005c00
CVE-2018-7903 MEDIUM

Huawei 1288H V5 and 288H V5 with software of V100R005C00 have a JSON injection vulnerability. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Due to insufficient verification of the input, this could be exploited to obtain the management privilege of the system.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware v100r005c00
huawei 2288h_v5_firmware v100r005c00
CVE-2018-7904 MEDIUM

Huawei 1288H V5 and 288H V5 with software of V100R005C00 have a JSON injection vulnerability. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Due to insufficient verification of the input, this could be exploited to obtain the management privilege of the system.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware v100r005c00
huawei 2288h_v5_firmware v100r005c00
CVE-2018-7906 HIGH

Some Huawei smart phones with software of Leland-AL00 8.0.0.114(C636), Leland-AL00A 8.0.0.171(C00) have a denial of service (DoS) vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Due to insufficient verification of the parameter, successful exploitation can cause the smartphone black screen until restarting the phone.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei lleland-al00a_firmware 8.0.0.171(c00)
huawei leland-al00_firmware 8.0.0.114(c636)
CVE-2018-7907 MEDIUM

Some Huawei products Agassi-L09 AGS-L09C100B257CUSTC100D001, AGS-L09C170B253CUSTC170D001, AGS-L09C199B251CUSTC199D001, AGS-L09C229B003CUSTC229D001, Agassi-W09 AGS-W09C100B257CUSTC100D001, AGS-W09C128B252CUSTC128D001, AGS-W09C170B252CUSTC170D001, AGS-W09C229B251CUSTC229D001, AGS-W09C331B003CUSTC331D001, AGS-W09C794B001CUSTC794D001, Baggio2-U01A BG2-U01C100B160CUSTC100D001, BG2-U01C170B160CUSTC170D001, BG2-U01C199B162CUSTC199D001, BG2-U01C209B160CUSTC209D001, BG2-U01C333B160CUSTC333D001, Bond-AL00C Bond-AL00CC00B201, Bond-AL10B Bond-AL10BC00B201, Bond-TL10B Bond-TL10BC01B201, Bond-TL10C Bond-TL10CC01B131, Haydn-L1JB HDN-L1JC137B068, Kobe-L09A KOB-L09C100B252CUSTC100D001, KOB-L09C209B002CUSTC209D001, KOB-L09C362B001CUSTC362D001, Kobe-L09AHN KOB-L09C233B226, Kobe-W09C KOB-W09C128B251CUSTC128D001, LelandP-L22C 8.0.0.101(C675CUSTC675D2), LelandP-L22D 8.0.0.101(C675CUSTC675D2), Rhone-AL00 Rhone-AL00C00B186, Selina-L02 Selina-L02C432B153, Stanford-L09S Stanford-L09SC432B183, Toronto-AL00 Toronto-AL00C00B223, Toronto-AL00A Toronto-AL00AC00B223, Toronto-TL10 Toronto-TL10C01B223 have a sensitive information leak vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Due to insufficient verification of the input, successful exploitation can cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei bond-tl10b_firmware bond-tl10bc01b201
huawei toronto-tl10_firmware toronto-tl10c01b223
huawei agassi-w09_firmware ags-w09c331b003custc331d001
huawei bond-al00c_firmware bond-al00cc00b201
huawei haydn-l1jb_firmware hdn-l1jc137b068
huawei kobe-l09a_firmware kob-l09c362b001custc362d001
huawei agassi-w09_firmware ags-w09c229b251custc229d001
huawei bond-al10b_firmware bond-al10bc00b201
huawei agassi-l09_firmware ags-l09c170b253custc170d001
huawei agassi-l09_firmware ags-l09c199b251custc199d001
huawei kobe-l09a_firmware kob-l09c100b252custc100d001
huawei rhone-al00_firmware rhone-al00c00b186
huawei selina-l02_firmware selina-l02c432b153
huawei kobe-l09ahn_firmware kob-l09c233b226
huawei agassi-w09_firmware ags-w09c170b252custc170d001
huawei baggio2-u01a_firmware bg2-u01c333b160custc333d001
huawei lelandp-l22c_firmware 8.0.0.101_c675custc675d2
huawei agassi-w09_firmware ags-w09c100b257custc100d001
huawei kobe-w09c_firmware kob-w09c128b251custc128d001
huawei agassi-w09_firmware ags-w09c128b252custc128d001
huawei stanford-l09s_firmware stanford-l09sc432b183
huawei baggio2-u01a_firmware bg2-u01c100b160custc100d001
huawei toronto-al00a_firmware toronto-al00ac00b223
huawei baggio2-u01a_firmware bg2-u01c170b160custc170d001
huawei agassi-l09_firmware ags-l09c229b003custc229d001
huawei kobe-l09a_firmware kob-l09c209b002custc209d001
huawei baggio2-u01a_firmware bg2-u01c199b162custc199d001
huawei agassi-l09_firmware ags-l09c100b257custc100d001
huawei lelandp-l22d_firmware 8.0.0.101_c675custc675d2
huawei bond-tl10c_firmware bond-tl10cc01b131
huawei baggio2-u01a_firmware bg2-u01c209b160custc209d001
huawei toronto-al00_firmware toronto-al00c00b223
huawei agassi-w09_firmware ags-w09c794b001custc794d001
CVE-2018-7910 MEDIUM

Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei bla-l09c_firmware 8.0.0.128(c432)
huawei bla-l29c_firmware 8.0.0.127(c432)
huawei bla-l09c_firmware 8.0.0.137(c432)
huawei bla-l29c_firmware 8.0.0.137(c432)
huawei alp-al00b_firmware 8.0.0.1.18d(c00)
huawei bla-l09c_firmware 8.0.0.127(c432)
huawei alp-tl00b_firmware 8.0.0.1.18d(c01)
huawei bla-al00b_firmware 8.0.0.1.18d(c00)
CVE-2018-7911 MEDIUM

Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B 8.0.0.113(SP7C01), 8.0.0.118(C01), 8.0.0.120(SP2C01), 8.0.0.125(SP1C01), 8.0.0.125(SP2C01), 8.0.0.125(SP3C01), 8.0.0.126(SP2C01), 8.0.0.126(SP5C01), 8.0.0.127(SP1C01), 8.0.0.128(SP2C01), 8.0.0.129(SP2C01), Charlotte-AL00A 8.1.0.105(SP7C00), 8.1.0.106(SP3C00), 8.1.0.107(SP5C00), 8.1.0.107(SP7C00), 8.1.0.108(SP3C00), 8.1.0.108(SP6C00), 8.1.0.109(SP2C00), Emily-AL00A 8.1.0.105(SP6C00), 8.1.0.106(SP2C00), 8.1.0.107(SP5C00), 8.1.0.107(SP7C00), 8.1.0.108(SP2C00), 8.1.0.108(SP6C00), 8.1.0.109(SP5C00) have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Gaode Map and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei alp-al00b_firmware 8.0.0.125(sp3c00)
huawei bla-tl00b_firmware 8.0.0.127(sp1c01)
huawei emily-al00a_firmware 8.1.0.107(sp7c00)
huawei alp-al00b_firmware 8.0.0.126(sp5c00)
huawei emily-al00a_firmware 8.1.0.109(sp5c00)
huawei alp-al00b_firmware 8.0.0.118(c00)
huawei emily-al00a_firmware 8.1.0.108(sp6c00)
huawei alp-al00b_firmware 8.0.0.113(sp7c00)
huawei alp-al00b_firmware 8.0.0.120(sp2c00)
huawei bla-tl00b_firmware 8.0.0.126(sp2c01)
huawei alp-al00b_firmware 8.0.0.128(sp2c00)
huawei bla-tl00b_firmware 8.0.0.113(sp7c01)
huawei bla-tl00b_firmware 8.0.0.126(sp5c01)
huawei bla-tl00b_firmware 8.0.0.118(c01)
huawei charlotte-al00a_firmware 8.1.0.108(sp6c00)
huawei alp-al00b_firmware 8.0.0.125(sp1c00)
huawei emily-al00a_firmware 8.1.0.105(sp6c00)
huawei charlotte-al00a_firmware 8.1.0.107(sp5c00)
huawei charlotte-al00a_firmware 8.1.0.105(sp7c00)
huawei charlotte-al00a_firmware 8.1.0.109(sp2c00)
huawei emily-al00a_firmware 8.1.0.107(sp5c00)
huawei emily-al00a_firmware 8.1.0.106(sp2c00)
huawei alp-al00b_firmware 8.0.0.126(sp2c00)
huawei alp-al00b_firmware 8.0.0.113(sp2c00)
huawei bla-tl00b_firmware 8.0.0.120(sp2c01)
huawei alp-al00b_firmware 8.0.0.106(c00)
huawei bla-tl00b_firmware 8.0.0.125(sp2c01)
huawei emily-al00a_firmware 8.1.0.108(sp2c00)
huawei alp-al00b-rsc_firmware 1.0.0.2
huawei bla-tl00b_firmware 8.0.0.128(sp2c01)
huawei alp-al00b_firmware 8.0.0.127(sp1c00)
huawei bla-tl00b_firmware 8.0.0.125(sp1c01)
huawei bla-tl00b_firmware 8.0.0.129(sp2c01)
huawei charlotte-al00a_firmware 8.1.0.108(sp3c00)
huawei alp-al00b_firmware 8.0.0.113(sp3c00)
huawei bla-tl00b_firmware 8.0.0.125(sp3c01)
huawei charlotte-al00a_firmware 8.1.0.106(sp3c00)
huawei charlotte-al00a_firmware 8.1.0.107(sp7c00)
CVE-2018-7920 MEDIUM

Huawei AR1200 V200R006C10SPC300, AR160 V200R006C10SPC300, AR200 V200R006C10SPC300, AR2200 V200R006C10SPC300, AR3200 V200R006C10SPC300 devices have an improper resource management vulnerability. Due to the improper implementation of ACL mechanism, a remote attacker may send TCP messages to the management interface of the affected device to exploit this vulnerability. Successful exploit could exhaust the socket resource of management interface, leading to a DoS condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei ar1200_firmware v200r006c10spc300
huawei ar3200_firmware v200r006c10spc300
huawei ar200_firmware v200r006c10spc300
huawei ar2200_firmware v200r006c10spc300
huawei ar160_firmware v200r006c10spc300
CVE-2018-7921 LOW

Huawei B315s-22 products with software of 21.318.01.00.26 have an information leak vulnerability. Unauthenticated adjacent attackers may exploit this vulnerability to obtain device information.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei b315s-22_firmware 21.318.01.00.26
CVE-2018-7922 HIGH

Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150(C432) have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to exploit the vulnerability. Successful exploit could allow the attacker to execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei alp-l09_firmware *
CVE-2018-7923 HIGH

Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150(C432) have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to exploit the vulnerability. Successful exploit could allow the attacker to execute arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei alp-l09_firmware *
CVE-2018-7924 LOW

Anne-AL00 Huawei phones with versions earlier than 8.0.0.151(C00) have an information leak vulnerability. Due to improper permission settings for specific commands, attackers who can connect to a mobile phone via the USB interface may exploit this vulnerability to obtain specific device information of the mobile phone.

CVSS 2.0

Severity: LOW

Problem Type: CWE-732,

Products Affected

Vendor Product Version
huawei anne-al00_firmware 8.0.0.151(c00)
CVE-2018-7925 MEDIUM

The radio module of some Huawei smartphones Emily-AL00A The versions before 8.1.0.171(C00) have a lock-screen bypass vulnerability. An unauthenticated attacker could start third-part input method APP through certain operations to bypass lock-screen by exploit this vulnerability.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei emily-al00a_firmware *
CVE-2018-7926 LOW

Huawei Watch 2 with versions and earlier than OWDD.180707.001.E1 have an improper authorization vulnerability. Due to improper permission configuration for specific operations, an attacker who obtained the Huawei ID bound to the watch can bypass permission verification to perform specific operations and modify some data on the watch.

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei watch_2_firmware *
CVE-2018-7929 MEDIUM

Huawei Mate RS smartphones with the versions before NEO-AL00D 8.1.0.167(C786) have a lock-screen bypass vulnerability. An attacker could unlock and use the phone through certain operations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei mate_rs_firmware *
CVE-2018-7930 LOW

The Near Field Communication (NFC) module in Mate 9 Huawei mobile phones with the versions before MHA-L29B 8.0.0.366(C567) has an information leak vulnerability due to insufficient validation on data transfer requests. When an affected mobile phone sends files to an attacker's mobile phone using the NFC function, the attacker can obtain arbitrary files from the mobile phone, causing information leaks.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
CVE-2018-7931 MEDIUM

Huawei AppGallery versions before 8.0.4.301 has a whitelist mechanism bypass vulnerability. An attacker may set up a malicious network environment and trick user into accessing a malicious web page to bypass the whitelist mechanism.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei appgallery *
CVE-2018-7932 MEDIUM

Huawei AppGallery versions before 8.0.4.301 has an arbitrary Javascript running vulnerability. An attacker may set up a malicious network environment and trick user into accessing a malicious web page to bypass the whitelist mechanism, which make the malicious Javascript loaded and run in the smart phone.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei appgallery *
CVE-2018-7933 MEDIUM

Huawei home gateway products HiRouter-CD20 and WS5200 with the versions before HiRouter-CD20-10 1.9.6 and the versions before WS5200-10 1.9.6 have a path traversal vulnerability. Due to the lack of validation while these home gateway products install APK plugins, an attacker tricks a user into installing a malicious APK plugin, and plugin can overwrite arbitrary file of devices. Successful exploit may result in arbitrary code execution or privilege escalation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei hirouter-cd20_firmware *
huawei ws5200_firmware *
CVE-2018-7934 HIGH

Some Huawei mobile phone with the versions before BLA-L29 8.0.0.145(C432) have a denial of service (DoS) vulnerability because they do not adapt to specific screen gestures. An attacker may trick users into installing a malicious app. As a result, apps running on the frontend crash after the users make specific screen gestures.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_10_pro_firmware *
CVE-2018-7935

There is a vulnerability in 21.328.01.00.00 version of the E5573Cs-322. Remote attackers could exploit this vulnerability to make the network where the E5573Cs-322 is running temporarily unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei e5573cs-322_firmware 21.328.01.00.00
CVE-2018-7936 MEDIUM

Mate 10 Pro Huawei smart phones with the versions before BLA-L29 8.0.0.148(C432) have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can connect the phone with PC and send special instructions to install third party desktop and disable the boot wizard. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_10_pro_firmware *
CVE-2018-7937 HIGH

In Huawei HiRouter-CD20-10 with the versions before 1.9.6 and WS5200-10 with the versions before 1.9.6, there is a plug-in signature bypass vulnerability due to insufficient plug-in verification. An attacker may tamper with a legitimate plug-in to build a malicious plug-in and trick users into installing it. Successful exploit could allow the attacker to obtain the root permission of the device and take full control over the device.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei ws5200-10_firmware *
huawei hirouter-cd20_firmware *
CVE-2018-7938 MEDIUM

P10 Huawei smartphones with the versions before Victoria-AL00AC00B217 have an information leak vulnerability due to the lack of permission validation. An attacker tricks a user into installing a malicious application on the smart phone, and the application can read some hardware serial number, which may cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei p10_firmware *
CVE-2018-7939 MEDIUM

Huawei smart phones G9 Lite, Honor 5A, Honor 6X, Honor 8 with the versions before VNS-L53C605B120CUSTC605D103, the versions before CAM-L03C605B143CUSTC605D008, the versions before CAM-L21C10B145, the versions before CAM-L21C185B156, the versions before CAM-L21C223B133, the versions before CAM-L21C432B210, the versions before CAM-L21C464B170, the versions before CAM-L21C636B245, the versions before Berlin-L21C10B372, the versions before Berlin-L21C185B363, the versions before Berlin-L21C464B137, the versions before Berlin-L23C605B161, the versions before FRD-L09C10B387, the versions before FRD-L09C185B387, the versions before FRD-L09C432B398, the versions before FRD-L09C636B387, the versions before FRD-L19C10B387, the versions before FRD-L19C432B399, the versions before FRD-L19C636B387 have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can disable the boot wizard by enable the talkback function. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_8_firmware *
huawei honor_6x_firmware *
huawei honor_5a_firmware *
huawei g9_lite_firmware *
huawei honor_5a *
CVE-2018-7940 HIGH

Huawei smart phones Mate 10 and Mate 10 Pro with earlier versions than 8.0.0.129(SP2C00) and earlier versions than 8.0.0.129(SP2C01) have an authentication bypass vulnerability. An attacker with high privilege obtains the smart phone and bypass the activation function by some specific operations.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei mate_9_pro_firmware *
CVE-2018-7941 MEDIUM

Huawei iBMC V200R002C60 have an authentication bypass vulnerability. A remote attacker with low privilege may craft specific messages to upload authentication certificate to the affected products. Due to improper validation of the upload authority, successful exploit may cause privilege elevation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware 100r005c00
huawei ch121_v5_firmware 100r001c00
huawei 2488_v5_firmware 100r005c00
huawei ch220_v3_firmware 100r001c00
huawei xh620_v3_firmware 100r003c00
huawei ch222_v3_firmware 100r001c00
huawei ch121l_v3_firmware 100r001c00
huawei 2288h_v5_firmware 100r005c00
huawei ch140l_v3_firmware 100r001c00
huawei ch242_v3_firmware 100r001c00
huawei ch121l_v5_firmware 100r001c00
huawei xh321_v3_firmware 100r003c00
huawei rh2288_v3_firmware 100r003c00
huawei ch121_v3_firmware 100r001c00
huawei rh1288_v3_firmware 100r003c00
huawei ch242_v5_firmware 100r001c00
huawei xh321_v5_firmware 100r005c00
huawei rh2288h_v3_firmware 100r003c00
huawei xh310_v3_firmware 100r003c00
huawei ch140_v3_firmware 100r001c00
CVE-2018-7942 MEDIUM

The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have an authentication bypass vulnerability. An unauthenticated, remote attacker may send some specially crafted messages to the affected products. Due to improper authentication design, successful exploit may cause some information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware 100r005c00
huawei 2488_v5_firmware 100r005c00
huawei ch121_v3_firmware 100r001c00
huawei ch121l_v3_firmware 100r001c00
huawei 2288h_v5_firmware 100r005c00
huawei ch242_v3_firmware 100r001c00
huawei ch121l_v5_firmware 100r001c00
CVE-2018-7943 MEDIUM

There is an authentication bypass vulnerability in some Huawei servers. A remote attacker with low privilege may bypass the authentication by some special operations. Due to insufficient authentication, an attacker may exploit the vulnerability to get some sensitive information and high-level users' privilege.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei xh620_v3_firmware v100r003c00
huawei ch121_v5_firmware v100r001c00
huawei ch242_v5_firmware v100r001c00
huawei xh310_v3_firmware v100r003c00
huawei 2288h_v5_firmware v100r005c00
huawei rh2288h_v3_firmware v100r003c00
huawei ch140_v3_firmware v100r001c00
huawei xh321_v5_firmware v100r005c00
huawei ch121_v3_firmware v100r001c00
huawei ch222_v3_firmware v100r001c00
huawei xh321_v3_firmware v100r003c00
huawei ch242_v3_firmware v100r001c00
huawei rh2288_v3_firmware v100r003c00
huawei 1288h_v5_firmware v100r005c00
huawei ch220_v3_firmware v100r001c00
huawei 2488_v5_firmware v100r005c00
huawei rh1288_v3_firmware v100r003c00
huawei ch121l_v3_firmware v100r001c00
huawei ch140l_v3_firmware v100r001c00
huawei ch121l_v5_firmware v100r001c00
CVE-2018-7944 HIGH

Huawei smart phones Emily-AL00A with software 8.1.0.106(SP2C00) and 8.1.0.107(SP5C00) have a Factory Reset Protection (FRP) bypass vulnerability. An attacker gets some user's smart phone and performs some special operations in the guide function. The attacker may exploit the vulnerability to bypass FRP function and use the phone normally.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emily-al00a_firmware 8.1.0.107(sp5c00)
huawei emily-al00a_firmware 8.1.0.106(sp2c00)
CVE-2018-7946 LOW

There is an information leak vulnerability in some Huawei smartphones. An attacker may do some specific configuration in the smartphone and trick a user into inputting some sensitive information. Due to improper design, successful exploit may cause some information leak.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei honor_7a_firmware *
huawei honor_9_lite_firmware *
CVE-2018-7947 MEDIUM

Huawei mobile phones with versions earlier before Emily-AL00A 8.1.0.153(C00) have an authentication bypass vulnerability. An attacker could trick the user to connect to a malicious device. In the debug mode, the malicious software in the device may exploit the vulnerability to bypass some specific function. Successful exploit may cause some malicious applications to be installed in the mobile phones.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei emily-al00a_firmware *
CVE-2018-7949 MEDIUM

The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a privilege escalation vulnerability. A remote attacker may send some specially crafted login messages to the affected products. Due to improper authentication design, successful exploit enables low privileged users to get or modify passwords of highly privileged users.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware 100r005c00
huawei ch121_v5_firmware 100r001c00
huawei 2488_v5_firmware 100r005c00
huawei ch220_v3_firmware 100r001c00
huawei xh620_v3_firmware 100r003c00
huawei ch222_v3_firmware 100r001c00
huawei ch121l_v3_firmware 100r001c00
huawei 2288h_v5_firmware 100r005c00
huawei ch140l_v3_firmware 100r001c00
huawei ch242_v3_firmware 100r001c00
huawei ch121l_v5_firmware 100r001c00
huawei xh321_v3_firmware 100r003c00
huawei rh2288_v3_firmware 100r003c00
huawei ch121_v3_firmware 100r001c00
huawei rh1288_v3_firmware 100r003c00
huawei ch242_v5_firmware 100r001c00
huawei xh321_v5_firmware 100r005c00
huawei rh2288h_v3_firmware 100r003c00
huawei xh310_v3_firmware 100r003c00
huawei ch140_v3_firmware 100r001c00
CVE-2018-7950 HIGH

The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware 100r005c00
huawei ch121_v5_firmware 100r001c00
huawei 2488_v5_firmware 100r005c00
huawei ch220_v3_firmware 100r001c00
huawei xh620_v3_firmware 100r003c00
huawei ch222_v3_firmware 100r001c00
huawei ch121l_v3_firmware 100r001c00
huawei 2288h_v5_firmware 100r005c00
huawei ch140l_v3_firmware 100r001c00
huawei ch242_v3_firmware 100r001c00
huawei ch121l_v5_firmware 100r001c00
huawei xh321_v3_firmware 100r003c00
huawei rh2288_v3_firmware 100r003c00
huawei ch121_v3_firmware 100r001c00
huawei rh1288_v3_firmware 100r003c00
huawei ch242_v5_firmware 100r001c00
huawei xh321_v5_firmware 100r005c00
huawei rh2288h_v3_firmware 100r003c00
huawei xh310_v3_firmware 100r003c00
huawei ch140_v3_firmware 100r001c00
CVE-2018-7951 HIGH

The iBMC (Intelligent Baseboard Management Controller) of some Huawei servers have a JSON injection vulnerability due to insufficient input validation. An authenticated, remote attacker can launch a JSON injection to modify the password of administrator. Successful exploit may allow attackers to obtain the management privilege of the system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei 1288h_v5_firmware 100r005c00
huawei ch121_v5_firmware 100r001c00
huawei 2488_v5_firmware 100r005c00
huawei ch220_v3_firmware 100r001c00
huawei xh620_v3_firmware 100r003c00
huawei ch222_v3_firmware 100r001c00
huawei ch121l_v3_firmware 100r001c00
huawei 2288h_v5_firmware 100r005c00
huawei ch140l_v3_firmware 100r001c00
huawei ch242_v3_firmware 100r001c00
huawei ch121l_v5_firmware 100r001c00
huawei xh321_v3_firmware 100r003c00
huawei rh2288_v3_firmware 100r003c00
huawei ch121_v3_firmware 100r001c00
huawei rh1288_v3_firmware 100r003c00
huawei ch242_v5_firmware 100r001c00
huawei xh321_v5_firmware 100r005c00
huawei rh2288h_v3_firmware 100r003c00
huawei xh310_v3_firmware 100r003c00
huawei ch140_v3_firmware 100r001c00
CVE-2018-7956 MEDIUM

Huawei VIP App is a mobile app for Malaysia customers that purchased P20 Series, Nova 3/3i and Mate 20. There is a vulnerability in versions before 4.0.5 that attackers can conduct bruteforce to the VIP App Web Services to get user information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei vip_app *
huawei mate_20_firmware -
huawei nova_3_firmware -
huawei nova_3i_firmware -
CVE-2018-7957 LOW

Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage vulnerability. Because an interface does not verify authorization correctly, attackers can exploit an application with the authorization of phone state to obtain user location additionally.

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei victoria-al00_firmware victoria-al00_8.0.0.336a(c00)
CVE-2018-7958 MEDIUM

There is an anonymous TLS cipher suites supported vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to hijack the connection from a client when the user signs up to log in by TLS. Due to insufficient authentication, which may be exploited to intercept and tamper with the data information.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei espace_7950_firmware v200r003c30
CVE-2018-7959 MEDIUM

There is a short key vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept and decrypt the call information when the user enables SRTP to make a call. Successful exploitation may cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei espace_7950_firmware v200r003c30
CVE-2018-7960 MEDIUM

There is a SRTP icon display vulnerability in Huawei eSpace product. An unauthenticated, remote attacker launches man-in-the-middle attack to intercept the packets in non-secure transmission mode. Successful exploitation may intercept and tamper with the call information, eventually cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,

Products Affected

Vendor Product Version
huawei espace_7950_firmware v200r003c30
CVE-2018-7961 MEDIUM

There is a smart SMS verification code vulnerability in some Huawei smart phones. An attacker should trick a user to access malicious Website or malicious App and register. Due to incorrect processing of the smart SMS verification code, successful exploitation can cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei emily-al00a_firmware 8.1.0.167(c00)
CVE-2018-7976 LOW

There is a stored cross-site scripting (XSS) vulnerability in Huawei eSpace Desktop V300R001C00 and V300R001C50 version. Due to the insufficient validation of the input, an authenticated, remote attacker could exploit this vulnerability to send abnormal messages to the system and perform a XSS attack. A successful exploit could cause the eSpace Desktop to hang up, and the function will restore to normal after restarting the eSpace Desktop.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei espace_desktop 300r001c50
huawei espace_desktop 300r001c00
CVE-2018-7977 MEDIUM

There is an information leakage vulnerability on several Huawei products. Due to insufficient communication protection for specific services, a remote, unauthorized attacker can exploit this vulnerability to connect to specific services to obtain additional information. Successful exploitation of this vulnerability can lead to information leakage.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack 100r006c00
CVE-2018-7987 MEDIUM

There is an out-of-bounds write vulnerability on Huawei P20 smartphones with versions before 8.1.0.171(C00). The software does not handle the response message properly when the user doing certain inquiry operation, an attacker could send crafted message to the device, successful exploit could cause a denial of service condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei p20_firmware *
CVE-2018-7988 LOW

There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker uses a data cable to connect the smartphone to another smartphone and then perform a series of specific operations. Successful exploit could allow the attacker bypass the FRP protection.

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei nova_2_plus_firmware *
huawei mate_9_pro_firmware *
CVE-2018-7989 LOW

Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful exploit could allow the attacker to use the application which is locked.

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_10_pro_firmware *
CVE-2018-7990 MEDIUM

Mate10 Pro Huawei smart phones with the versions before 8.1.0.326(C00) have a FRP bypass vulnerability. During the mobile phone reseting process, an attacker could bypass "Find My Phone" protect after a series of voice and keyboard operations. Successful exploit could allow an attacker to bypass FRP.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_10_pro_firmware *
CVE-2018-7991 LOW

Huawei smartphones Mate10 with versions earlier before ALP-AL00B 8.0.0.110(C00) have a Factory Reset Protection (FRP) bypass vulnerability. The system does not sufficiently verify the permission, an attacker uses a data cable to connect the smartphone to the computer and then perform some specific operations. Successful exploit could allow the attacker bypass the FRP protection to access the system setting page.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate10_firmware *
CVE-2018-7992 MEDIUM

Mdapt Driver of Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro versions earlier than 8.0.0.356(C00); P10 Plus versions earlier than 8.0.0.357(C00) has a buffer overflow vulnerability. The driver does not sufficiently validate the input, an attacker could trick the user to install a malicious application which would send crafted parameters to the driver. Successful exploit could cause a denial of service condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
huawei mate_9_firmware *
huawei mate_9_pro_firmware *
huawei mediapad_m3_firmware btv-w09c128b353custc128d001
CVE-2018-7993 HIGH

HUAWEI Mate 10 smartphones with versions earlier than ALP-AL00 8.1.0.311 have a use after free vulnerability on mediaserver component. An attacker tricks the user install a malicious application, which make the software to reference memory after it has been freed. Successful exploit could cause execution of arbitrary code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei mate_10_firmware *
CVE-2018-7994 HIGH

Some Huawei products IPS Module V500R001C50; NGFW Module V500R001C50; V500R002C10; NIP6300 V500R001C50; NIP6600 V500R001C50; NIP6800 V500R001C50; Secospace USG6600 V500R001C50; USG9500 V500R001C50 have a memory leak vulnerability. The software does not release allocated memory properly when processing Protal questionnaire. A remote attacker could send a lot questionnaires to the device, successful exploit could cause the device to reboot since running out of memory.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei ips_module v500r001c50
huawei ngfw_module v500r001c50
huawei nip6600 v500r001c50
huawei usg9500 v500r001c50
huawei secospace_usg6600 v500r001c50
huawei nip6800 v500r001c50
huawei nip6300 v500r001c50
huawei ngfw_module v500r002c10
CVE-2019-0708 HIGH

A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Execution Vulnerability'.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,CWE-416,

Products Affected

Vendor Product Version
huawei espace_ecs_firmware v300r001c00
huawei rh2288a_v2_firmware v100r002c00
siemens multix_top_acss_p_firmware *
huawei rh2268_v2_firmware v100r002c00
huawei agile_controller-campus_firmware v100r002c00
huawei e6000_chassis_firmware v100r001c00
huawei gtsoftx3000_firmware v200r001c01spc100
siemens axiom_vertix_md_trauma_firmware *
huawei oceanstor_hvs88t_firmware v100r001c30spc200
siemens multix_swing_firmware *
huawei ch220_firmware v100r001c00
huawei rh1288a_v2_firmware v100r002c00
huawei e6000_firmware v100r002c00
siemens multix_pro_p_firmware *
huawei rh2288_v2_firmware v100r002c00
huawei seco_vsm_firmware v200r002c00
huawei bh622_v2_firmware v100r001c00
huawei bh620_v2_firmware v100r002c00
siemens axiom_vertix_solitaire_m_firmware *
huawei rh2265_v2_firmware v100r002c00
huawei x6000_firmware v100r002c00
huawei smc2.0_firmware v500r002c00
siemens vertix_solitaire_firmware *
huawei oceanstor_hvs85t_firmware v100r001c30spc200
siemens streamlab_firmware *
huawei elog_firmware v200r003c10
huawei uma_firmware v300r001c00
huawei oceanstor_18800f_firmware v100r001c30spc300
siemens multix_top_acss_firmware *
huawei rh1288_v2_firmware v100r002c00
huawei rh2285_v2_firmware v100r002c00
siemens syngo_lab_process_manager *
siemens atellica_solution_firmware *
huawei rh2285h_v2_firmware v100r002c00
siemens lantis_firmware *
microsoft windows_7 -
microsoft windows_server_2008 r2
huawei smc2.0_firmware v600r006c00
siemens viva_twin_firmware *
huawei ch240_firmware v100r001c00
huawei oceanstor_hvs85t_firmware v100r001c00
siemens multix_top_p_firmware *
huawei ch242_v3_firmware v100r001c00
huawei rh5885_v3_firmware v100r003c00
huawei oceanstor_hvs88t_firmware v100r001c00
huawei oceanstor_18500_firmware v100r001c30spc300
siemens multix_top_firmware *
huawei ch242_firmware v100r001c00
huawei agile_controller-campus_firmware v100r002c10
huawei ch221_firmware v100r001c00
huawei rh5885_v2_firmware v100r001c00
siemens multix_pro_firmware *
huawei bh621_v2_firmware v100r002c00
huawei bh640_v2_firmware v100r002c00
siemens mobilett_xp_digital_firmware *
siemens multix_pro_acss_p_firmware *
siemens viva_e_firmware *
huawei uma_firmware v200r001c00
siemens aptio_firmware *
huawei ch140_firmware v100r001c00
huawei oceanstor_18800_firmware v100r001c30spc300
huawei ch121_firmware v100r001c00
huawei rh2288h_v2_firmware v100r002c00
siemens rapidpoint_500_firmware *
huawei rh2485_v2_firmware v100r002c00
huawei x8000_firmware v100r002c20
siemens multix_pro_acss_firmware *
huawei gtsoftx3000_firmware v200r002c10spc100
microsoft windows_server_2008 -
huawei gtsoftx3000_firmware v200r002c00spc300
siemens multix_pro_navy_firmware *
huawei ch222_firmware v100r002c00
huawei rh2288e_v2_firmware v100r002c00
siemens axiom_multix_m_firmware *
siemens centralink_firmware *
CVE-2019-14835 HIGH

A buffer overflow flaw was found, in versions from 2.6.34 to 5.2.x, in the way Linux kernel's vhost functionality that translates virtqueue buffers to IOVs, logged the buffer descriptors during migration. A privileged guest user able to pass descriptors with invalid length to the host when migration is underway, could use this flaw to increase their privileges on the host.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,CWE-120,

Products Affected

Vendor Product Version
huawei imanager_neteco v600r009c10spc200
netapp service_processor -
debian debian_linux 10.0
redhat enterprise_linux_eus 7.5
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_server_tus 7.3
redhat enterprise_linux_server_aus 7.3
redhat enterprise_linux_server_tus 7.2
redhat enterprise_linux_desktop 6.0
netapp _steelstore_cloud_integrated_storage -
fedoraproject fedora 30
canonical ubuntu_linux 19.04
huawei imanager_neteco v600r009c00
huawei imanager_neteco_6000 v600r008c10spc300
netapp h500e_firmware -
redhat enterprise_linux 8.0
netapp h700e_firmware -
redhat enterprise_linux_for_real_time 7
redhat enterprise_linux_eus 7.7
redhat enterprise_linux_server_aus 7.7
redhat enterprise_linux_server_aus 7.2
canonical ubuntu_linux 12.04
huawei manageone 6.5.1rc1.b060
linux linux_kernel 5.3
redhat enterprise_linux_server 6.0
netapp h410s_firmware -
redhat enterprise_linux_server 7.0
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_eus 7.6
huawei imanager_neteco_6000 v600r008c20
huawei manageone 6.5.rc2.b050
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_for_real_time 8
huawei manageone 6.5.0
huawei manageone 6.5.1rc1.b080
netapp h610s_firmware -
redhat enterprise_linux_server_aus 7.6
debian debian_linux 9.0
netapp hci_management_node -
netapp solidfire -
netapp h500s_firmware -
redhat enterprise_linux_server 7.6
redhat enterprise_linux_server_tus 7.7
redhat enterprise_linux_server_aus 6.6
fedoraproject fedora 29
canonical ubuntu_linux 18.04
netapp h410c_firmware -
opensuse leap 15.0
debian debian_linux 8.0
netapp h300e_firmware -
redhat enterprise_linux_server_aus 6.5
redhat enterprise_linux_server_tus 7.4
redhat enterprise_linux_server_aus 7.4
opensuse leap 15.1
redhat virtualization 4.0
redhat virtualization_host 4.0
canonical ubuntu_linux 16.04
netapp h300s_firmware -
linux linux_kernel *
redhat enterprise_linux_workstation 6.0
netapp h700s_firmware -
netapp aff_a700s_firmware -
huawei manageone 6.5.0.spc100.b210
netapp steelstore_cloud_integrated_storage -
redhat openshift_container_platform 3.11
netapp data_availability_services -
canonical ubuntu_linux 14.04
CVE-2019-19397 MEDIUM

There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s12700_firmware v200r007c20
huawei s7700_firmware v200r008c00
huawei s6700_firmware v200r011c00
huawei s9700_firmware v200r007c01
huawei s12700_firmware v200r011c10
huawei s9700_firmware v200r006c00
huawei s6700_firmware v200r005c00
huawei s7700_firmware v200r006c00
huawei s5700_firmware v200r012c20
huawei s7700_firmware v200r011c10
huawei s6700_firmware v200r012c00
huawei s6700_firmware v200r008c00
huawei s7700_firmware v200r007c00
huawei s6700_firmware v200r010c00
huawei s12700_firmware v200r010c00
huawei s1700_firmware v200r012c00
huawei s1700_firmware v200r010c00
huawei s2700_firmware v200r011c10
huawei s9700_firmware v200r011c10
huawei s5700_firmware v200r012c00
huawei s2700_firmware v200r007c00
huawei s1700_firmware v200r006c10
huawei s5700_firmware v200r005c03
huawei s2700_firmware v200r006c00
huawei s9700_firmware v200r010c00
huawei s9700_firmware v200r007c00
huawei s6700_firmware v200r011c10
huawei s9700_firmware v200r012c00
huawei s5700_firmware v200r005c02
huawei s5700_firmware v200r010c00
huawei s5700_firmware v200r007c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r011c10
huawei s2700_firmware v200r012c00
huawei s2700_firmware v200r011c00
huawei s5700_firmware v200r006c00
huawei s5700_firmware v200r008c00
huawei s12700_firmware v200r012c00
huawei s2700_firmware v200r006c10
huawei s6700_firmware v200r005c02
huawei s5700_firmware v200r005c00
huawei s6700_firmware v200r005c01
huawei s2700_firmware v200r010c00
huawei s5700_firmware v200r011c00
huawei s7700_firmware v200r012c00
huawei s2700_firmware v200r008c00
huawei s12700_firmware v200r007c01
huawei s1700_firmware v200r012c20
huawei s12700_firmware v200r007c00
huawei s7700_firmware v200r010c00
huawei s1700_firmware v200r011c10
CVE-2019-19398 HIGH

M5 lite 10 with versions of 8.0.0.182(C00) have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to modify the memory of the device by doing a series of operations. Successful exploit may lead to malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei m5_lite_10_firmware 8.0.0.182(c00)
CVE-2019-19411 MEDIUM

USG9500 with versions of V500R001C30SPC100, V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 have an information leakage vulnerability. Due to improper processing of the initialization vector used in a specific encryption algorithm, an attacker who gains access to this cryptographic primitive may exploit this vulnerability to cause the value of the confidentiality associated with its use to be diminished.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-665,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc100
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00spc200
huawei usg9500_firmware v500r001c30spc600
huawei usg9500_firmware v500r005c00spc100
CVE-2019-19412 LOW

Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the Talkback mode and can perform some operations to install a third-Party application. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-frp-en.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei alp-l09_firmware *
huawei leland-l22a_firmware *
huawei alp-al00b_firmware *
huawei figo-l23_firmware *
huawei figo-l31_firmware *
huawei alp-l29_firmware *
huawei florida-l21_firmware *
huawei honor_view_10_firmware *
huawei florida-l03_firmware *
huawei anne-al00_firmware *
huawei bla-l29c_firmware *
huawei p_smart_firmware *
huawei p20_lite_firmware *
huawei nova_3e_firmware *
huawei figo-l21_firmware *
huawei leland-l31a_firmware *
huawei bla-al00b_firmware *
huawei leland-l22c_firmware *
huawei emily-l29c_firmware *
huawei florida-l22_firmware *
huawei figo-l03_firmware *
huawei leland-l21a_firmware *
huawei florida-l23_firmware *
huawei berkeley-l09_firmware *
huawei leland-al00a_firmware *
huawei berkeley-al20_firmware *
huawei y7s_firmware *
huawei bla-l09c_firmware *
CVE-2019-19413 HIGH

There is an integer overflow vulnerability in LDAP client of some Huawei products. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending malformed packets to the target devices. Successful exploit could cause the affected system crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dbs3900_tdd_lte_firmware v100r003c00
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei rp200_firmware v500r002c00spc200
huawei dbs3900_tdd_lte_firmware v100r004c10
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2019-19414 HIGH

There is an integer overflow vulnerability in LDAP server of some Huawei products. Due to insufficient input validation, a remote attacker could exploit this vulnerability by sending malformed packets to the target devices. Successful exploit could cause the affected system crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei te30_firmware v100r001c10
huawei dbs3900_tdd_lte_firmware v100r003c00
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei rp200_firmware v500r002c00spc200
huawei dbs3900_tdd_lte_firmware v100r004c10
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te30_firmware v600r006c00
huawei te60_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei rp200_firmware v600r006c00
CVE-2019-19415 MEDIUM

The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei espace_u1930_firmware v200r003c30
huawei vp9660_firmware v200r001c30spcd01t
huawei nip6600_firmware v500r001c50
huawei viewpoint_8660_firmware v100r008c03spc500
huawei espace_u1911_firmware v100r001c20spc300
huawei te60_firmware v500r002c00spca00
huawei espace_u1960_firmware v100r001c20sph309
huawei usg9500_firmware v300r001c01
huawei espace_u1960_firmware v200r003c00
huawei espace_u1911_firmware v200r003c00
huawei te60_firmware v100r003c00
huawei svn5800-c_firmware v200r003c10
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei te30_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03spc100
huawei vp9660_firmware v200r001c30spc100
huawei espace_u1910_firmware v100r001c20spc500
huawei vp9660_firmware v200r001c30spcb00
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei espace_u1930_firmware v200r003c20
huawei espace_u1930_firmware v100r001c20sph703
huawei netengine16ex_firmware v200r008c20
huawei vp9660_firmware v500r002c00spc600
huawei ar3200_firmware v200r006c10
huawei vp9660_firmware v200r001c30spci00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03b012sp15
huawei te30_firmware v500r002c00spcb00
huawei ar200_firmware v200r007c00
huawei vp9660_firmware v500r002c10spc100
huawei espace_u1960_firmware v100r001c01spc500
huawei vp9660_firmware v200r001c30spc101tb015
huawei ips_module_firmware v100r001c10
huawei vp9660_firmware v200r001c30spc200b022t
huawei secospace_usg6600_firmware v100r001c20
huawei vp9660_firmware v500r002c00spc900t
huawei nip6600_firmware v500r001c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei srg3300_firmware v200r008c20
huawei te60_firmware v100r001c10spc400
huawei ar2200_firmware v200r007c01
huawei te30_firmware v500r002c00spc200
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei te30_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c02spc100
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar200-s_firmware v200r007c00
huawei vp9660_firmware v200r001c30spc403t
huawei vp9660_firmware v500r002c00spc001t
huawei ar160_firmware v200r007c00
huawei te30_firmware v500r002c00spc600
huawei vp9660_firmware v200r001c30spc202b025t
huawei vp9660_firmware v500r002c00spc201t
huawei vp9660_firmware v500r002c00spcb01t
huawei espace_u1910_firmware v200r003c20
huawei te60_firmware v600r006c00spc200
huawei ips_module_firmware v100r001c20
huawei vp9660_firmware v200r001c30spcj00
huawei nip6300_firmware v500r001c30
huawei vp9660_firmware v500r002c00spc205t
huawei te60_firmware v500r002c00
huawei vp9660_firmware v200r001c30spcd05t
huawei secospace_usg6300_firmware v500r001c50
huawei espace_u1911_firmware v100r001c20spc600
huawei te40_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c30spce01t
huawei nip6300_firmware v500r001c20
huawei ar510_firmware v200r006c17
huawei vp9660_firmware v200r001c30spca02t
huawei vp9660_firmware v200r001c30spch00
huawei espace_u1981_firmware v100r001c20sph702
huawei espace_u1911_firmware v100r001c20sph703
huawei tp3206_firmware v100r002c00
huawei ngfw_module_firmware v500r002c00
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei espace_u1981_firmware v100r001c20spc500
huawei espace_u1980_firmware v100r001c20spc300
huawei vp9660_firmware v200r001c30spc209t
huawei svn5600_firmware v200r003c10
huawei vp9660_firmware v200r001c30spc404t
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei vp9660_firmware v200r001c30spc703t
huawei vp9660_firmware v200r001c30spca00
huawei semg9811_firmware v300r001c01spc700
huawei vp9660_firmware v200r001c30spcd02t
huawei ar200_firmware v200r008c30
huawei softco_firmware v200r003c00spc200
huawei secospace_usg6600_firmware v500r001c20
huawei ar2200-s_firmware v200r008c20
huawei vp9660_firmware v200r001c30spc702t
huawei ar510_firmware v200r006c12
huawei espace_u1960_firmware v100r001c20spc600
huawei secospace_usg6500_firmware v100r001c20
huawei ar3600_firmware v200r007c01
huawei vp9660_firmware v500r002c00t
huawei vp9660_firmware v200r001c30spc800
huawei vp9660_firmware v500r002c00spc700
huawei te60_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03spc700
huawei ar150_firmware v200r006c10
huawei espace_u1981_firmware v200r003c30
huawei ar3200_firmware v200r006c11
huawei espace_u1980_firmware v200r003c30
huawei te60_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc100
huawei espace_u1960_firmware v100r001c20spc300
huawei ips_module_firmware v500r001c00
huawei espace_u1980_firmware v100r001c20spc600
huawei vp9660_firmware v200r001c30spce00
huawei ar150-s_firmware v200r007c00
huawei espace_u1910_firmware v200r003c30
huawei ar510_firmware v200r007c00spcb00
huawei vp9660_firmware v500r002c10t
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei vp9660_firmware v200r001c30spcd00
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c00spc300t
huawei espace_u1980_firmware v100r001c20sph703
huawei ngfw_module_firmware v100r001c30
huawei espace_u1981_firmware v100r001c30
huawei vp9660_firmware v200r001c30spc206t
huawei ar2200-s_firmware v200r007c00
huawei ar510_firmware v200r007c00spc180t
huawei vp9660_firmware v200r001c30spcd04t
huawei espace_u1980_firmware v100r001c20spc502
huawei dp300_firmware v500r002c00
huawei espace_u1910_firmware v100r001c20spc300
huawei espace_u1980_firmware v100r001c20spc500t
huawei ar2200_firmware v200r008c20
huawei te60_firmware v500r002c00spc700
huawei espace_u1980_firmware v100r001c01spc500t
huawei smc2.0_firmware v100r005c00spc103
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ips_module_firmware v500r001c50
huawei espace_u1911_firmware v200r003c30
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei te40_firmware v500r002c00spc600
huawei rse6500_firmware v500r002c00
huawei ar3600_firmware v200r007c00
huawei vp9660_firmware v500r002c00spc400
huawei secospace_usg6500_firmware v500r001c50
huawei srg3300_firmware v200r006c10
huawei vp9660_firmware v200r001c30spc104t
huawei espace_u1910_firmware v100r001c20spc400
huawei softco_firmware v200r003c00spc500
huawei vp9660_firmware v500r002c00spc203t
huawei vp9660_firmware v200r001c30spc401t
huawei ar150_firmware v200r007c01
huawei vp9660_firmware v500r002c00spc206t
huawei te40_firmware v600r006c00
huawei te60_firmware v100r001c10spc500
huawei vp9660_firmware v200r001c30spc200
huawei ar1200_firmware v200r007c01
huawei ar160_firmware v200r008c30
huawei vp9660_firmware v500r002c00spcc00
huawei softco_firmware v200r001c01spc300
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei semg9811_firmware v300r001c01spca00
huawei ar510_firmware v200r008c20
huawei espace_u1981_firmware v100r001c20spc700
huawei vp9660_firmware v200r001c30spc207t
huawei vp9660_firmware v200r001c30spc208t
huawei secospace_usg6500_firmware v500r001c20
huawei srg3300_firmware v200r008c30
huawei nip6600_firmware v500r001c30
huawei vp9660_firmware v200r001c30spc203t
huawei ar200-s_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b012sp16
huawei espace_u1930_firmware v200r003c00
huawei vp9660_firmware v500r002c00spc900
huawei smc2.0_firmware v100r005c00spc101b001t
huawei semg9811_firmware v300r001c01spc500t
huawei ar510_firmware v200r007c00spc900
huawei srg3300_firmware v200r007c00
huawei espace_u1960_firmware v100r001c20lcrw01t
huawei vp9660_firmware v500r002c00spc200t
huawei ar510_firmware v200r006c10
huawei usg9520_firmware v300r001c01spc800pwe
huawei vp9660_firmware v200r001c30spc400b001
huawei ar2200_firmware v200r006c16pwe
huawei smc2.0_firmware v100r005c00spc102
huawei vp9660_firmware v200r001c30spc300
huawei vp9660_firmware v200r001c30spc900
huawei vp9660_firmware v200r001c30spc400
huawei ips_module_firmware v100r001c30
huawei te60_firmware v100r001c10spc800
huawei espace_u1960_firmware v100r001c20spc400
huawei secospace_usg6500_firmware v500r001c00
huawei ar3600_firmware v200r006c10
huawei ar150_firmware v200r008c20
huawei espace_u1911_firmware v100r001c20spc500
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei vp9660_firmware v200r001c02spc400
huawei nip6800_firmware v500r001c30
huawei viewpoint_8660_firmware v100r008c03spc100
huawei vp9660_firmware v200r001c30spcg00
huawei ar2200_firmware v200r006c13
huawei espace_u1960_firmware v200r003c30
huawei espace_u1980_firmware v200r003c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei viewpoint_8660_firmware v100r008c03spc800
huawei ar160_firmware v200r007c02
huawei espace_u1911_firmware v200r003c20
huawei ar150-s_firmware v200r008c30
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c10spc100t
huawei secospace_usg6300_firmware v500r001c00
huawei te60_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c02spc300t
huawei usg9560_firmware v300r001c20spc300
huawei vp9660_firmware v200r001c30spc800t
huawei te40_firmware v500r002c00spcb00
huawei vp9660_firmware v200r001c30spc103t
huawei viewpoint_8660_firmware v100r008c03spc400
huawei ips_module_firmware v500r001c30
huawei te30_firmware v100r001c02spc200
huawei te60_firmware v500r002c00spc800
huawei softco_firmware v200r001c01spc400
huawei vp9660_firmware v200r001c30spcf00
huawei ar1200_firmware v200r008c20
huawei espace_u1981_firmware v100r001c20sph703
huawei ar510_firmware v200r006c16
huawei viewpoint_8660_firmware v100r008c03spc600
huawei smc2.0_firmware v100r003c00spc200t
huawei softco_firmware v200r001c01sph703
huawei secospace_usg6600_firmware v500r001c50
huawei espace_u1910_firmware v100r001c20spc600
huawei vp9660_firmware v500r002c00spc901t
huawei te60_firmware v500r002c00spc300
huawei viewpoint_8660_firmware v100r008c03b013sp03
huawei ar120-s_firmware v200r007c00
huawei espace_u1980_firmware v100r001c20sph309
huawei viewpoint_8660_firmware v100r008c03b013sp02
huawei ar200-s_firmware v200r008c30
huawei te60_firmware v500r002c00spc200
huawei espace_u1930_firmware v100r001c20spc400
huawei smc2.0_firmware v100r003c00spc301t
huawei vp9660_firmware v200r001c30spcc00
huawei vp9660_firmware v500r002c00spc200
huawei nip6600_firmware v500r001c20
huawei ar3200_firmware v200r008c10
huawei vp9660_firmware v200r001c30spca01t
huawei secospace_usg6600_firmware v100r001c10
huawei vp9660_firmware v200r001c30spc600
huawei ar150_firmware v200r008c30
huawei vp9660_firmware v500r002c00spcd00
huawei espace_u1930_firmware v100r001c20spc600
huawei vp9660_firmware v200r001c30spc402t
huawei smc2.0_firmware v100r005c00spc201t
huawei espace_u1980_firmware v100r001c20spc400
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei espace_u1981_firmware v100r001c20spc600
huawei espace_u1960_firmware v100r001c20spc600t
huawei espace_u1960_firmware v200r003c20
huawei viewpoint_8660_firmware v100r008c03spcc00
huawei espace_u1960_firmware v100r001c20sph703
huawei vp9660_firmware v200r001c30spcd00t
huawei softco_firmware v200r003c20
huawei secospace_usg6600_firmware v100r001c00
huawei espace_u1910_firmware v100r001c20sph703
huawei espace_u1981_firmware v100r001c20spc400
huawei softco_firmware v200r001c01spc500
huawei vp9660_firmware v200r001c30spc102t
huawei vp9660_firmware v200r001c30spca01
huawei vp9660_firmware v200r001c30spc700t
huawei espace_u1980_firmware v200r003c00
huawei ar1200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc400
huawei srg1300_firmware v200r008c30
huawei vp9660_firmware v200r001c30spc201b023t
huawei te30_firmware v100r001c02spc100
huawei ar1200-s_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b015sp03
huawei vp9660_firmware v200r001c02spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei te30_firmware v500r002c00spc700
huawei ar150_firmware v200r007c00
huawei vp9660_firmware v500r002c00spc800
huawei viewpoint_9030_firmware v100r011c03spc300
huawei ar2200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc200
huawei vp9660_firmware v500r002c00spc500
huawei usg9500_firmware v500r001c20
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100
huawei ar2200_firmware v200r007c02
huawei ar510_firmware v200r006c13
huawei viewpoint_8660_firmware v100r008c03spc200
huawei secospace_usg6300_firmware v500r001c20
huawei smc2.0_firmware v100r005c00spc100
huawei semg9811_firmware v300r001c01spc500
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100b012
huawei ar3200_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei smc2.0_firmware v100r003c10
huawei ar1200_firmware v200r007c02
huawei te60_firmware v500r002c00spc600
huawei viewpoint_8660_firmware v100r008c03spcb00
huawei smc2.0_firmware v600r006c00
huawei espace_u1910_firmware v200r003c00
huawei viewpoint_8660_firmware v100r008c03spc300
huawei vp9660_firmware v200r001c30spc700
huawei vp9660_firmware v500r002c10
huawei te60_firmware v100r001c01spc100
huawei te40_firmware v500r002c00spc700
huawei usg9500_firmware v300r001c20
huawei smc2.0_firmware v100r005c00spc200
huawei ar160_firmware v200r008c20
huawei vp9660_firmware v200r001c30spcd03t
huawei vp9660_firmware v500r002c00spcb00
huawei ar200_firmware v200r007c01
huawei espace_u1981_firmware v200r003c20
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ngfw_module_firmware v500r001c20
huawei viewpoint_8660_firmware v100r008c03b013sp04
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei ar3200_firmware v200r008c30
huawei vp9660_firmware v200r001c30spc405t
huawei secospace_usg6500_firmware v100r001c30
huawei vp9660_firmware v200r001c30spc100b015t
huawei softco_firmware v200r001c01spc600
huawei secospace_usg6300_firmware v100r001c10
huawei ar1200-s_firmware v200r007c00
huawei viewpoint_8660_firmware v100r008c03spc900
huawei espace_u1981_firmware v200r003c00
huawei smc2.0_firmware v500r002c00
huawei vp9660_firmware v200r001c30spca00t
huawei vp9660_firmware v500r002c00spc300
huawei ar2200_firmware v200r008c30
huawei viewpoint_9030_firmware v100r011c02spc100
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02spc300
huawei ar200-s_firmware v200r006c10
huawei vp9660_firmware v200r001c30spc101
huawei te50_firmware v500r002c00spcb00
huawei vp9660_firmware v200r001c30spc400t
huawei usg9500_firmware v500r001c50
huawei softco_firmware v200r003c00spc100
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei espace_u1911_firmware v100r001c20spc400
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei vp9660_firmware v500r002c00spc204t
huawei viewpoint_9030_firmware v100r011c03spc500
huawei vp9660_firmware v500r002c00spca00
huawei espace_u1930_firmware v100r001c20spc300
huawei ar510_firmware v200r007c00spc600
huawei vp9660_firmware v200r001c30spc701t
huawei espace_u1911_firmware v100r001c20sph309
huawei viewpoint_8660_firmware v100r008c03spca00
huawei espace_u1930_firmware v100r001c20spc500
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei te60_firmware v100r001c10spc300
huawei ar1200_firmware v200r006c13
huawei espace_u1981_firmware v100r001c20spc300
CVE-2019-19416 MEDIUM

The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei espace_u1930_firmware v200r003c30
huawei vp9660_firmware v200r001c30spcd01t
huawei nip6600_firmware v500r001c50
huawei viewpoint_8660_firmware v100r008c03spc500
huawei espace_u1911_firmware v100r001c20spc300
huawei te60_firmware v500r002c00spca00
huawei espace_u1960_firmware v100r001c20sph309
huawei usg9500_firmware v300r001c01
huawei espace_u1960_firmware v200r003c00
huawei espace_u1911_firmware v200r003c00
huawei te60_firmware v100r003c00
huawei svn5800-c_firmware v200r003c10
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei te30_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03spc100
huawei vp9660_firmware v200r001c30spc100
huawei espace_u1910_firmware v100r001c20spc500
huawei vp9660_firmware v200r001c30spcb00
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei espace_u1930_firmware v200r003c20
huawei espace_u1930_firmware v100r001c20sph703
huawei netengine16ex_firmware v200r008c20
huawei vp9660_firmware v500r002c00spc600
huawei ar3200_firmware v200r006c10
huawei vp9660_firmware v200r001c30spci00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03b012sp15
huawei te30_firmware v500r002c00spcb00
huawei ar200_firmware v200r007c00
huawei vp9660_firmware v500r002c10spc100
huawei espace_u1960_firmware v100r001c01spc500
huawei vp9660_firmware v200r001c30spc101tb015
huawei ips_module_firmware v100r001c10
huawei vp9660_firmware v200r001c30spc200b022t
huawei secospace_usg6600_firmware v100r001c20
huawei vp9660_firmware v500r002c00spc900t
huawei nip6600_firmware v500r001c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei srg3300_firmware v200r008c20
huawei te60_firmware v100r001c10spc400
huawei ar2200_firmware v200r007c01
huawei te30_firmware v500r002c00spc200
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei te30_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c02spc100
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar200-s_firmware v200r007c00
huawei vp9660_firmware v200r001c30spc403t
huawei vp9660_firmware v500r002c00spc001t
huawei ar160_firmware v200r007c00
huawei te30_firmware v500r002c00spc600
huawei vp9660_firmware v200r001c30spc202b025t
huawei vp9660_firmware v500r002c00spc201t
huawei vp9660_firmware v500r002c00spcb01t
huawei espace_u1910_firmware v200r003c20
huawei te60_firmware v600r006c00spc200
huawei ips_module_firmware v100r001c20
huawei vp9660_firmware v200r001c30spcj00
huawei nip6300_firmware v500r001c30
huawei vp9660_firmware v500r002c00spc205t
huawei te60_firmware v500r002c00
huawei vp9660_firmware v200r001c30spcd05t
huawei secospace_usg6300_firmware v500r001c50
huawei espace_u1911_firmware v100r001c20spc600
huawei te40_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c30spce01t
huawei nip6300_firmware v500r001c20
huawei ar510_firmware v200r006c17
huawei vp9660_firmware v200r001c30spca02t
huawei vp9660_firmware v200r001c30spch00
huawei espace_u1981_firmware v100r001c20sph702
huawei espace_u1911_firmware v100r001c20sph703
huawei tp3206_firmware v100r002c00
huawei ngfw_module_firmware v500r002c00
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei espace_u1981_firmware v100r001c20spc500
huawei espace_u1980_firmware v100r001c20spc300
huawei vp9660_firmware v200r001c30spc209t
huawei svn5600_firmware v200r003c10
huawei vp9660_firmware v200r001c30spc404t
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei vp9660_firmware v200r001c30spc703t
huawei vp9660_firmware v200r001c30spca00
huawei semg9811_firmware v300r001c01spc700
huawei vp9660_firmware v200r001c30spcd02t
huawei ar200_firmware v200r008c30
huawei softco_firmware v200r003c00spc200
huawei secospace_usg6600_firmware v500r001c20
huawei ar2200-s_firmware v200r008c20
huawei vp9660_firmware v200r001c30spc702t
huawei ar510_firmware v200r006c12
huawei espace_u1960_firmware v100r001c20spc600
huawei secospace_usg6500_firmware v100r001c20
huawei ar3600_firmware v200r007c01
huawei vp9660_firmware v500r002c00t
huawei vp9660_firmware v200r001c30spc800
huawei vp9660_firmware v500r002c00spc700
huawei te60_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03spc700
huawei ar150_firmware v200r006c10
huawei espace_u1981_firmware v200r003c30
huawei ar3200_firmware v200r006c11
huawei espace_u1980_firmware v200r003c30
huawei te60_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc100
huawei espace_u1960_firmware v100r001c20spc300
huawei ips_module_firmware v500r001c00
huawei espace_u1980_firmware v100r001c20spc600
huawei vp9660_firmware v200r001c30spce00
huawei ar150-s_firmware v200r007c00
huawei espace_u1910_firmware v200r003c30
huawei ar510_firmware v200r007c00spcb00
huawei vp9660_firmware v500r002c10t
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei vp9660_firmware v200r001c30spcd00
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c00spc300t
huawei espace_u1980_firmware v100r001c20sph703
huawei ngfw_module_firmware v100r001c30
huawei espace_u1981_firmware v100r001c30
huawei vp9660_firmware v200r001c30spc206t
huawei ar2200-s_firmware v200r007c00
huawei ar510_firmware v200r007c00spc180t
huawei vp9660_firmware v200r001c30spcd04t
huawei espace_u1980_firmware v100r001c20spc502
huawei dp300_firmware v500r002c00
huawei espace_u1910_firmware v100r001c20spc300
huawei espace_u1980_firmware v100r001c20spc500t
huawei ar2200_firmware v200r008c20
huawei te60_firmware v500r002c00spc700
huawei espace_u1980_firmware v100r001c01spc500t
huawei smc2.0_firmware v100r005c00spc103
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ips_module_firmware v500r001c50
huawei espace_u1911_firmware v200r003c30
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei te40_firmware v500r002c00spc600
huawei rse6500_firmware v500r002c00
huawei ar3600_firmware v200r007c00
huawei vp9660_firmware v500r002c00spc400
huawei secospace_usg6500_firmware v500r001c50
huawei srg3300_firmware v200r006c10
huawei vp9660_firmware v200r001c30spc104t
huawei espace_u1910_firmware v100r001c20spc400
huawei softco_firmware v200r003c00spc500
huawei vp9660_firmware v500r002c00spc203t
huawei vp9660_firmware v200r001c30spc401t
huawei ar150_firmware v200r007c01
huawei vp9660_firmware v500r002c00spc206t
huawei te40_firmware v600r006c00
huawei te60_firmware v100r001c10spc500
huawei vp9660_firmware v200r001c30spc200
huawei ar1200_firmware v200r007c01
huawei ar160_firmware v200r008c30
huawei vp9660_firmware v500r002c00spcc00
huawei softco_firmware v200r001c01spc300
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei semg9811_firmware v300r001c01spca00
huawei ar510_firmware v200r008c20
huawei espace_u1981_firmware v100r001c20spc700
huawei vp9660_firmware v200r001c30spc207t
huawei vp9660_firmware v200r001c30spc208t
huawei secospace_usg6500_firmware v500r001c20
huawei srg3300_firmware v200r008c30
huawei nip6600_firmware v500r001c30
huawei vp9660_firmware v200r001c30spc203t
huawei ar200-s_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b012sp16
huawei espace_u1930_firmware v200r003c00
huawei vp9660_firmware v500r002c00spc900
huawei smc2.0_firmware v100r005c00spc101b001t
huawei semg9811_firmware v300r001c01spc500t
huawei ar510_firmware v200r007c00spc900
huawei srg3300_firmware v200r007c00
huawei espace_u1960_firmware v100r001c20lcrw01t
huawei vp9660_firmware v500r002c00spc200t
huawei ar510_firmware v200r006c10
huawei usg9520_firmware v300r001c01spc800pwe
huawei vp9660_firmware v200r001c30spc400b001
huawei ar2200_firmware v200r006c16pwe
huawei smc2.0_firmware v100r005c00spc102
huawei vp9660_firmware v200r001c30spc300
huawei vp9660_firmware v200r001c30spc900
huawei vp9660_firmware v200r001c30spc400
huawei ips_module_firmware v100r001c30
huawei te60_firmware v100r001c10spc800
huawei espace_u1960_firmware v100r001c20spc400
huawei secospace_usg6500_firmware v500r001c00
huawei ar3600_firmware v200r006c10
huawei ar150_firmware v200r008c20
huawei espace_u1911_firmware v100r001c20spc500
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei vp9660_firmware v200r001c02spc400
huawei nip6800_firmware v500r001c30
huawei viewpoint_8660_firmware v100r008c03spc100
huawei vp9660_firmware v200r001c30spcg00
huawei ar2200_firmware v200r006c13
huawei espace_u1960_firmware v200r003c30
huawei espace_u1980_firmware v200r003c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei viewpoint_8660_firmware v100r008c03spc800
huawei ar160_firmware v200r007c02
huawei espace_u1911_firmware v200r003c20
huawei ar150-s_firmware v200r008c30
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c10spc100t
huawei secospace_usg6300_firmware v500r001c00
huawei te60_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c02spc300t
huawei usg9560_firmware v300r001c20spc300
huawei vp9660_firmware v200r001c30spc800t
huawei te40_firmware v500r002c00spcb00
huawei vp9660_firmware v200r001c30spc103t
huawei viewpoint_8660_firmware v100r008c03spc400
huawei ips_module_firmware v500r001c30
huawei te30_firmware v100r001c02spc200
huawei te60_firmware v500r002c00spc800
huawei softco_firmware v200r001c01spc400
huawei vp9660_firmware v200r001c30spcf00
huawei ar1200_firmware v200r008c20
huawei espace_u1981_firmware v100r001c20sph703
huawei ar510_firmware v200r006c16
huawei viewpoint_8660_firmware v100r008c03spc600
huawei smc2.0_firmware v100r003c00spc200t
huawei softco_firmware v200r001c01sph703
huawei secospace_usg6600_firmware v500r001c50
huawei espace_u1910_firmware v100r001c20spc600
huawei vp9660_firmware v500r002c00spc901t
huawei te60_firmware v500r002c00spc300
huawei viewpoint_8660_firmware v100r008c03b013sp03
huawei ar120-s_firmware v200r007c00
huawei espace_u1980_firmware v100r001c20sph309
huawei viewpoint_8660_firmware v100r008c03b013sp02
huawei ar200-s_firmware v200r008c30
huawei te60_firmware v500r002c00spc200
huawei espace_u1930_firmware v100r001c20spc400
huawei smc2.0_firmware v100r003c00spc301t
huawei vp9660_firmware v200r001c30spcc00
huawei vp9660_firmware v500r002c00spc200
huawei nip6600_firmware v500r001c20
huawei ar3200_firmware v200r008c10
huawei vp9660_firmware v200r001c30spca01t
huawei secospace_usg6600_firmware v100r001c10
huawei vp9660_firmware v200r001c30spc600
huawei ar150_firmware v200r008c30
huawei vp9660_firmware v500r002c00spcd00
huawei espace_u1930_firmware v100r001c20spc600
huawei vp9660_firmware v200r001c30spc402t
huawei smc2.0_firmware v100r005c00spc201t
huawei espace_u1980_firmware v100r001c20spc400
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei espace_u1981_firmware v100r001c20spc600
huawei espace_u1960_firmware v100r001c20spc600t
huawei espace_u1960_firmware v200r003c20
huawei viewpoint_8660_firmware v100r008c03spcc00
huawei espace_u1960_firmware v100r001c20sph703
huawei vp9660_firmware v200r001c30spcd00t
huawei softco_firmware v200r003c20
huawei secospace_usg6600_firmware v100r001c00
huawei espace_u1910_firmware v100r001c20sph703
huawei espace_u1981_firmware v100r001c20spc400
huawei softco_firmware v200r001c01spc500
huawei vp9660_firmware v200r001c30spc102t
huawei vp9660_firmware v200r001c30spca01
huawei vp9660_firmware v200r001c30spc700t
huawei espace_u1980_firmware v200r003c00
huawei ar1200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc400
huawei srg1300_firmware v200r008c30
huawei vp9660_firmware v200r001c30spc201b023t
huawei te30_firmware v100r001c02spc100
huawei ar1200-s_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b015sp03
huawei vp9660_firmware v200r001c02spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei te30_firmware v500r002c00spc700
huawei ar150_firmware v200r007c00
huawei vp9660_firmware v500r002c00spc800
huawei viewpoint_9030_firmware v100r011c03spc300
huawei ar2200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc200
huawei vp9660_firmware v500r002c00spc500
huawei usg9500_firmware v500r001c20
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100
huawei ar2200_firmware v200r007c02
huawei ar510_firmware v200r006c13
huawei viewpoint_8660_firmware v100r008c03spc200
huawei secospace_usg6300_firmware v500r001c20
huawei smc2.0_firmware v100r005c00spc100
huawei semg9811_firmware v300r001c01spc500
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100b012
huawei ar3200_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei smc2.0_firmware v100r003c10
huawei ar1200_firmware v200r007c02
huawei te60_firmware v500r002c00spc600
huawei viewpoint_8660_firmware v100r008c03spcb00
huawei smc2.0_firmware v600r006c00
huawei espace_u1910_firmware v200r003c00
huawei viewpoint_8660_firmware v100r008c03spc300
huawei vp9660_firmware v200r001c30spc700
huawei vp9660_firmware v500r002c10
huawei te60_firmware v100r001c01spc100
huawei te40_firmware v500r002c00spc700
huawei usg9500_firmware v300r001c20
huawei smc2.0_firmware v100r005c00spc200
huawei ar160_firmware v200r008c20
huawei vp9660_firmware v200r001c30spcd03t
huawei vp9660_firmware v500r002c00spcb00
huawei ar200_firmware v200r007c01
huawei espace_u1981_firmware v200r003c20
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ngfw_module_firmware v500r001c20
huawei viewpoint_8660_firmware v100r008c03b013sp04
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei ar3200_firmware v200r008c30
huawei vp9660_firmware v200r001c30spc405t
huawei secospace_usg6500_firmware v100r001c30
huawei vp9660_firmware v200r001c30spc100b015t
huawei softco_firmware v200r001c01spc600
huawei secospace_usg6300_firmware v100r001c10
huawei ar1200-s_firmware v200r007c00
huawei viewpoint_8660_firmware v100r008c03spc900
huawei espace_u1981_firmware v200r003c00
huawei smc2.0_firmware v500r002c00
huawei vp9660_firmware v200r001c30spca00t
huawei vp9660_firmware v500r002c00spc300
huawei ar2200_firmware v200r008c30
huawei viewpoint_9030_firmware v100r011c02spc100
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02spc300
huawei ar200-s_firmware v200r006c10
huawei vp9660_firmware v200r001c30spc101
huawei te50_firmware v500r002c00spcb00
huawei vp9660_firmware v200r001c30spc400t
huawei usg9500_firmware v500r001c50
huawei softco_firmware v200r003c00spc100
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei espace_u1911_firmware v100r001c20spc400
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei vp9660_firmware v500r002c00spc204t
huawei viewpoint_9030_firmware v100r011c03spc500
huawei vp9660_firmware v500r002c00spca00
huawei espace_u1930_firmware v100r001c20spc300
huawei ar510_firmware v200r007c00spc600
huawei vp9660_firmware v200r001c30spc701t
huawei espace_u1911_firmware v100r001c20sph309
huawei viewpoint_8660_firmware v100r008c03spca00
huawei espace_u1930_firmware v100r001c20spc500
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei te60_firmware v100r001c10spc300
huawei ar1200_firmware v200r006c13
huawei espace_u1981_firmware v100r001c20spc300
CVE-2019-19417 MEDIUM

The SIP module of some Huawei products have a denial of service (DoS) vulnerability. A remote attacker could exploit these three vulnerabilities by sending the specially crafted messages to the affected device. Due to the insufficient verification of the packets, successful exploit could allow the attacker to cause buffer overflow and dead loop, leading to DoS condition. Affected products can be found in https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20200115-01-sip-en.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-119,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei espace_u1930_firmware v200r003c30
huawei vp9660_firmware v200r001c30spcd01t
huawei nip6600_firmware v500r001c50
huawei viewpoint_8660_firmware v100r008c03spc500
huawei espace_u1911_firmware v100r001c20spc300
huawei te60_firmware v500r002c00spca00
huawei espace_u1960_firmware v100r001c20sph309
huawei usg9500_firmware v300r001c01
huawei espace_u1960_firmware v200r003c00
huawei espace_u1911_firmware v200r003c00
huawei te60_firmware v100r003c00
huawei svn5800-c_firmware v200r003c10
huawei srg1300_firmware v200r006c10
huawei secospace_usg6300_firmware v100r001c20
huawei te30_firmware v100r001c10
huawei viewpoint_9030_firmware v100r011c03spc100
huawei vp9660_firmware v200r001c30spc100
huawei espace_u1910_firmware v100r001c20spc500
huawei vp9660_firmware v200r001c30spcb00
huawei ar150_firmware v200r007c02
huawei usg9500_firmware v500r001c30
huawei ar1200_firmware v200r007c00
huawei svn5600_firmware v200r003c00
huawei espace_u1930_firmware v200r003c20
huawei espace_u1930_firmware v100r001c20sph703
huawei netengine16ex_firmware v200r008c20
huawei vp9660_firmware v500r002c00spc600
huawei ar3200_firmware v200r006c10
huawei vp9660_firmware v200r001c30spci00
huawei ar150-s_firmware v200r006c10spc300
huawei ar2200-s_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03b012sp15
huawei te30_firmware v500r002c00spcb00
huawei ar200_firmware v200r007c00
huawei vp9660_firmware v500r002c10spc100
huawei espace_u1960_firmware v100r001c01spc500
huawei vp9660_firmware v200r001c30spc101tb015
huawei ips_module_firmware v100r001c10
huawei vp9660_firmware v200r001c30spc200b022t
huawei secospace_usg6600_firmware v100r001c20
huawei vp9660_firmware v500r002c00spc900t
huawei nip6600_firmware v500r001c00
huawei ar510_firmware v200r008c30
huawei netengine16ex_firmware v200r008c30
huawei srg3300_firmware v200r008c20
huawei te60_firmware v100r001c10spc400
huawei ar2200_firmware v200r007c01
huawei te30_firmware v500r002c00spc200
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei te30_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c02spc100
huawei te30_firmware v600r006c00
huawei secospace_usg6300_firmware v100r001c30
huawei te60_firmware v600r006c00
huawei usg9500_firmware v500r001c00
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ar200-s_firmware v200r007c00
huawei vp9660_firmware v200r001c30spc403t
huawei vp9660_firmware v500r002c00spc001t
huawei ar160_firmware v200r007c00
huawei te30_firmware v500r002c00spc600
huawei vp9660_firmware v200r001c30spc202b025t
huawei vp9660_firmware v500r002c00spc201t
huawei vp9660_firmware v500r002c00spcb01t
huawei espace_u1910_firmware v200r003c20
huawei te60_firmware v600r006c00spc200
huawei ips_module_firmware v100r001c20
huawei vp9660_firmware v200r001c30spcj00
huawei nip6300_firmware v500r001c30
huawei vp9660_firmware v500r002c00spc205t
huawei te60_firmware v500r002c00
huawei vp9660_firmware v200r001c30spcd05t
huawei secospace_usg6300_firmware v500r001c50
huawei espace_u1911_firmware v100r001c20spc600
huawei te40_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c30spce01t
huawei nip6300_firmware v500r001c20
huawei ar510_firmware v200r006c17
huawei vp9660_firmware v200r001c30spca02t
huawei vp9660_firmware v200r001c30spch00
huawei espace_u1981_firmware v100r001c20sph702
huawei espace_u1911_firmware v100r001c20sph703
huawei tp3206_firmware v100r002c00
huawei ngfw_module_firmware v500r002c00
huawei te60_firmware v100r001c10spc600
huawei te50_firmware v500r002c00spc600
huawei espace_u1981_firmware v100r001c20spc500
huawei espace_u1980_firmware v100r001c20spc300
huawei vp9660_firmware v200r001c30spc209t
huawei svn5600_firmware v200r003c10
huawei vp9660_firmware v200r001c30spc404t
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei vp9660_firmware v200r001c30spc703t
huawei vp9660_firmware v200r001c30spca00
huawei semg9811_firmware v300r001c01spc700
huawei vp9660_firmware v200r001c30spcd02t
huawei ar200_firmware v200r008c30
huawei softco_firmware v200r003c00spc200
huawei secospace_usg6600_firmware v500r001c20
huawei ar2200-s_firmware v200r008c20
huawei vp9660_firmware v200r001c30spc702t
huawei ar510_firmware v200r006c12
huawei espace_u1960_firmware v100r001c20spc600
huawei secospace_usg6500_firmware v100r001c20
huawei ar3600_firmware v200r007c01
huawei vp9660_firmware v500r002c00t
huawei vp9660_firmware v200r001c30spc800
huawei vp9660_firmware v500r002c00spc700
huawei te60_firmware v100r001c10
huawei viewpoint_8660_firmware v100r008c03spc700
huawei ar150_firmware v200r006c10
huawei espace_u1981_firmware v200r003c30
huawei ar3200_firmware v200r006c11
huawei espace_u1980_firmware v200r003c30
huawei te60_firmware v500r002c00spcb00
huawei te60_firmware v500r002c00spc100
huawei espace_u1960_firmware v100r001c20spc300
huawei ips_module_firmware v500r001c00
huawei espace_u1980_firmware v100r001c20spc600
huawei vp9660_firmware v200r001c30spce00
huawei ar150-s_firmware v200r007c00
huawei espace_u1910_firmware v200r003c30
huawei ar510_firmware v200r007c00spcb00
huawei vp9660_firmware v500r002c10t
huawei ngfw_module_firmware v500r002c10
huawei svn5800_firmware v200r003c10
huawei vp9660_firmware v200r001c30spcd00
huawei ar200_firmware v200r008c20
huawei smc2.0_firmware v100r003c00spc300t
huawei espace_u1980_firmware v100r001c20sph703
huawei ngfw_module_firmware v100r001c30
huawei espace_u1981_firmware v100r001c30
huawei vp9660_firmware v200r001c30spc206t
huawei ar2200-s_firmware v200r007c00
huawei ar510_firmware v200r007c00spc180t
huawei vp9660_firmware v200r001c30spcd04t
huawei espace_u1980_firmware v100r001c20spc502
huawei dp300_firmware v500r002c00
huawei espace_u1910_firmware v100r001c20spc300
huawei espace_u1980_firmware v100r001c20spc500t
huawei ar2200_firmware v200r008c20
huawei te60_firmware v500r002c00spc700
huawei espace_u1980_firmware v100r001c01spc500t
huawei smc2.0_firmware v100r005c00spc103
huawei svn5800_firmware v200r003c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei secospace_usg6500_firmware v100r001c10
huawei ips_module_firmware v500r001c50
huawei espace_u1911_firmware v200r003c30
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei ar3200_firmware v200r007c01
huawei ar3200_firmware v200r008c20
huawei te40_firmware v500r002c00spc600
huawei rse6500_firmware v500r002c00
huawei ar3600_firmware v200r007c00
huawei vp9660_firmware v500r002c00spc400
huawei secospace_usg6500_firmware v500r001c50
huawei srg3300_firmware v200r006c10
huawei vp9660_firmware v200r001c30spc104t
huawei espace_u1910_firmware v100r001c20spc400
huawei softco_firmware v200r003c00spc500
huawei vp9660_firmware v500r002c00spc203t
huawei vp9660_firmware v200r001c30spc401t
huawei ar150_firmware v200r007c01
huawei vp9660_firmware v500r002c00spc206t
huawei te40_firmware v600r006c00
huawei te60_firmware v100r001c10spc500
huawei vp9660_firmware v200r001c30spc200
huawei ar1200_firmware v200r007c01
huawei ar160_firmware v200r008c30
huawei vp9660_firmware v500r002c00spcc00
huawei softco_firmware v200r001c01spc300
huawei ar120-s_firmware v200r006c10
huawei srg1300_firmware v200r007c02
huawei semg9811_firmware v300r001c01spca00
huawei ar510_firmware v200r008c20
huawei espace_u1981_firmware v100r001c20spc700
huawei vp9660_firmware v200r001c30spc207t
huawei vp9660_firmware v200r001c30spc208t
huawei secospace_usg6500_firmware v500r001c20
huawei srg3300_firmware v200r008c30
huawei nip6600_firmware v500r001c30
huawei vp9660_firmware v200r001c30spc203t
huawei ar200-s_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b012sp16
huawei espace_u1930_firmware v200r003c00
huawei vp9660_firmware v500r002c00spc900
huawei smc2.0_firmware v100r005c00spc101b001t
huawei semg9811_firmware v300r001c01spc500t
huawei ar510_firmware v200r007c00spc900
huawei srg3300_firmware v200r007c00
huawei espace_u1960_firmware v100r001c20lcrw01t
huawei vp9660_firmware v500r002c00spc200t
huawei ar510_firmware v200r006c10
huawei usg9520_firmware v300r001c01spc800pwe
huawei vp9660_firmware v200r001c30spc400b001
huawei ar2200_firmware v200r006c16pwe
huawei smc2.0_firmware v100r005c00spc102
huawei vp9660_firmware v200r001c30spc300
huawei vp9660_firmware v200r001c30spc900
huawei vp9660_firmware v200r001c30spc400
huawei ips_module_firmware v100r001c30
huawei te60_firmware v100r001c10spc800
huawei espace_u1960_firmware v100r001c20spc400
huawei secospace_usg6500_firmware v500r001c00
huawei ar3600_firmware v200r006c10
huawei ar150_firmware v200r008c20
huawei espace_u1911_firmware v100r001c20spc500
huawei secospace_usg6600_firmware v100r001c30
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei vp9660_firmware v200r001c02spc400
huawei nip6800_firmware v500r001c30
huawei viewpoint_8660_firmware v100r008c03spc100
huawei vp9660_firmware v200r001c30spcg00
huawei ar2200_firmware v200r006c13
huawei espace_u1960_firmware v200r003c30
huawei espace_u1980_firmware v200r003c20
huawei ngfw_module_firmware v100r001c20
huawei srg2300_firmware v200r007c02
huawei viewpoint_8660_firmware v100r008c03spc800
huawei ar160_firmware v200r007c02
huawei espace_u1911_firmware v200r003c20
huawei ar150-s_firmware v200r008c30
huawei te50_firmware v600r006c00
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v100r001c10
huawei vp9660_firmware v500r002c10spc100t
huawei secospace_usg6300_firmware v500r001c00
huawei te60_firmware v500r002c00spc900
huawei vp9660_firmware v200r001c02spc300t
huawei usg9560_firmware v300r001c20spc300
huawei vp9660_firmware v200r001c30spc800t
huawei te40_firmware v500r002c00spcb00
huawei vp9660_firmware v200r001c30spc103t
huawei viewpoint_8660_firmware v100r008c03spc400
huawei ips_module_firmware v500r001c30
huawei te30_firmware v100r001c02spc200
huawei te60_firmware v500r002c00spc800
huawei softco_firmware v200r001c01spc400
huawei vp9660_firmware v200r001c30spcf00
huawei ar1200_firmware v200r008c20
huawei espace_u1981_firmware v100r001c20sph703
huawei ar510_firmware v200r006c16
huawei viewpoint_8660_firmware v100r008c03spc600
huawei smc2.0_firmware v100r003c00spc200t
huawei softco_firmware v200r001c01sph703
huawei secospace_usg6600_firmware v500r001c50
huawei espace_u1910_firmware v100r001c20spc600
huawei vp9660_firmware v500r002c00spc901t
huawei te60_firmware v500r002c00spc300
huawei viewpoint_8660_firmware v100r008c03b013sp03
huawei ar120-s_firmware v200r007c00
huawei espace_u1980_firmware v100r001c20sph309
huawei viewpoint_8660_firmware v100r008c03b013sp02
huawei ar200-s_firmware v200r008c30
huawei te60_firmware v500r002c00spc200
huawei espace_u1930_firmware v100r001c20spc400
huawei smc2.0_firmware v100r003c00spc301t
huawei vp9660_firmware v200r001c30spcc00
huawei vp9660_firmware v500r002c00spc200
huawei nip6600_firmware v500r001c20
huawei ar3200_firmware v200r008c10
huawei vp9660_firmware v200r001c30spca01t
huawei secospace_usg6600_firmware v100r001c10
huawei vp9660_firmware v200r001c30spc600
huawei ar150_firmware v200r008c30
huawei vp9660_firmware v500r002c00spcd00
huawei espace_u1930_firmware v100r001c20spc600
huawei vp9660_firmware v200r001c30spc402t
huawei smc2.0_firmware v100r005c00spc201t
huawei espace_u1980_firmware v100r001c20spc400
huawei srg2300_firmware v200r006c10
huawei srg2300_firmware v200r008c30
huawei espace_u1981_firmware v100r001c20spc600
huawei espace_u1960_firmware v100r001c20spc600t
huawei espace_u1960_firmware v200r003c20
huawei viewpoint_8660_firmware v100r008c03spcc00
huawei espace_u1960_firmware v100r001c20sph703
huawei vp9660_firmware v200r001c30spcd00t
huawei softco_firmware v200r003c20
huawei secospace_usg6600_firmware v100r001c00
huawei espace_u1910_firmware v100r001c20sph703
huawei espace_u1981_firmware v100r001c20spc400
huawei softco_firmware v200r001c01spc500
huawei vp9660_firmware v200r001c30spc102t
huawei vp9660_firmware v200r001c30spca01
huawei vp9660_firmware v200r001c30spc700t
huawei espace_u1980_firmware v200r003c00
huawei ar1200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc400
huawei srg1300_firmware v200r008c30
huawei vp9660_firmware v200r001c30spc201b023t
huawei te30_firmware v100r001c02spc100
huawei ar1200-s_firmware v200r008c30
huawei srg2300_firmware v200r008c20
huawei viewpoint_9030_firmware v100r011c03b015sp03
huawei vp9660_firmware v200r001c02spc200
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei te30_firmware v500r002c00spc700
huawei ar150_firmware v200r007c00
huawei vp9660_firmware v500r002c00spc800
huawei viewpoint_9030_firmware v100r011c03spc300
huawei ar2200_firmware v200r006c10
huawei viewpoint_9030_firmware v100r011c03spc200
huawei vp9660_firmware v500r002c00spc500
huawei usg9500_firmware v500r001c20
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100
huawei ar2200_firmware v200r007c02
huawei ar510_firmware v200r006c13
huawei viewpoint_8660_firmware v100r008c03spc200
huawei secospace_usg6300_firmware v500r001c20
huawei smc2.0_firmware v100r005c00spc100
huawei semg9811_firmware v300r001c01spc500
huawei viewpoint_9030_firmware v100r011c03lgwl01spc100b012
huawei ar3200_firmware v200r007c00
huawei ngfw_module_firmware v500r001c00
huawei smc2.0_firmware v100r003c10
huawei ar1200_firmware v200r007c02
huawei te60_firmware v500r002c00spc600
huawei viewpoint_8660_firmware v100r008c03spcb00
huawei smc2.0_firmware v600r006c00
huawei espace_u1910_firmware v200r003c00
huawei viewpoint_8660_firmware v100r008c03spc300
huawei vp9660_firmware v200r001c30spc700
huawei vp9660_firmware v500r002c10
huawei te60_firmware v100r001c01spc100
huawei te40_firmware v500r002c00spc700
huawei usg9500_firmware v300r001c20
huawei smc2.0_firmware v100r005c00spc200
huawei ar160_firmware v200r008c20
huawei vp9660_firmware v200r001c30spcd03t
huawei vp9660_firmware v500r002c00spcb00
huawei ar200_firmware v200r007c01
huawei espace_u1981_firmware v200r003c20
huawei ar1200_firmware v200r008c30
huawei ar120-s_firmware v200r008c20
huawei ar510_firmware v200r006c15
huawei ngfw_module_firmware v500r001c20
huawei viewpoint_8660_firmware v100r008c03b013sp04
huawei ar160_firmware v200r007c01
huawei ar3600_firmware v200r008c20
huawei ar3200_firmware v200r008c30
huawei vp9660_firmware v200r001c30spc405t
huawei secospace_usg6500_firmware v100r001c30
huawei vp9660_firmware v200r001c30spc100b015t
huawei softco_firmware v200r001c01spc600
huawei secospace_usg6300_firmware v100r001c10
huawei ar1200-s_firmware v200r007c00
huawei viewpoint_8660_firmware v100r008c03spc900
huawei espace_u1981_firmware v200r003c00
huawei smc2.0_firmware v500r002c00
huawei vp9660_firmware v200r001c30spca00t
huawei vp9660_firmware v500r002c00spc300
huawei ar2200_firmware v200r008c30
huawei viewpoint_9030_firmware v100r011c02spc100
huawei svn5800-c_firmware v200r003c00
huawei vp9660_firmware v200r001c02spc300
huawei ar200-s_firmware v200r006c10
huawei vp9660_firmware v200r001c30spc101
huawei te50_firmware v500r002c00spcb00
huawei vp9660_firmware v200r001c30spc400t
huawei usg9500_firmware v500r001c50
huawei softco_firmware v200r003c00spc100
huawei ar2200-s_firmware v200r008c30
huawei ar3200_firmware v200r007c02
huawei espace_u1911_firmware v100r001c20spc400
huawei vp9660_firmware v500r002c00
huawei ar120-s_firmware v200r008c30
huawei ar3200_firmware v200r008c00
huawei vp9660_firmware v500r002c00spc204t
huawei viewpoint_9030_firmware v100r011c03spc500
huawei vp9660_firmware v500r002c00spca00
huawei espace_u1930_firmware v100r001c20spc300
huawei ar510_firmware v200r007c00spc600
huawei vp9660_firmware v200r001c30spc701t
huawei espace_u1911_firmware v100r001c20sph309
huawei viewpoint_8660_firmware v100r008c03spca00
huawei espace_u1930_firmware v100r001c20spc500
huawei nip6300_firmware v500r001c00
huawei ar160_firmware v200r006c12
huawei te60_firmware v100r001c10spc300
huawei ar1200_firmware v200r006c13
huawei espace_u1981_firmware v100r001c20spc300
CVE-2019-19441 LOW

HUAWEI P30 smart phones with versions earlier than 10.0.0.166(C00E66R1P11) have an information leak vulnerability. An attacker could send specific command in the local area network (LAN) to exploit this vulnerability. Successful exploitation may cause information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2019-2215 MEDIUM

A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,CWE-416,

Products Affected

Vendor Product Version
netapp service_processor -
huawei florida-al20b_firmware *
huawei florida-l21_firmware *
huawei princeton-al10b_firmware *
huawei stanford-l09s_firmware *
huawei ares-al00b_firmware *
huawei barca-al00_firmware *
huawei tony-tl00b_firmware *
huawei bla-l29c_firmware *
huawei y9_2019_firmware *
huawei sydney-al00_firmware *
huawei nova_3e_firmware *
huawei stanford-l09_firmware *
huawei bla-tl00b_firmware *
netapp cloud_backup -
google android -
netapp a320_firmware -
huawei berkeley-tl10_firmware *
huawei nova_2s_firmware *
huawei bla-al00b_firmware *
huawei columbia-al00a_firmware *
huawei neo-al00d_firmware *
huawei nova_3_firmware *
netapp a220_firmware -
netapp h410s_firmware -
huawei florida-tl10b_firmware *
huawei honor_9i_firmware *
huawei figo-al00a_firmware *
huawei leland-tl10b_firmware *
huawei dura-al00a_firmware *
netapp h610s_firmware -
huawei columbia-l29d_firmware *
huawei leland-l32a_firmware *
netapp fas2720_firmware -
huawei johnson-tl00d_firmware *
huawei ares-al10d_firmware *
huawei honor_view_20_firmware *
netapp hci_management_node -
netapp solidfire -
netapp h500s_firmware -
huawei alp-al00b_firmware *
netapp fas2750_firmware -
huawei florida-l03_firmware *
huawei mate_rs_firmware 9.1.0.321(c786e320r1p1t8)
huawei anne-al00_firmware *
netapp c190_firmware -
netapp a800_firmware -
huawei lelandp-al00c_firmware *
netapp h410c_firmware -
huawei p20_lite_firmware *
debian debian_linux 8.0
huawei jakarta-al00a_firmware *
huawei yale-l21a_firmware *
netapp aff_baseboard_management_controller_firmware -
huawei leland-al10b_firmware *
huawei florida-l22_firmware *
huawei tony-al00b_firmware *
huawei alp-tl00b_firmware *
canonical ubuntu_linux 16.04
netapp h300s_firmware -
huawei cornell-tl10b_firmware *
huawei rhone-al00_firmware *
huawei sydneym-al00_firmware *
netapp h700s_firmware -
huawei leland-l21a_firmware *
huawei duke-l09i_firmware *
netapp steelstore_cloud_integrated_storage -
huawei yale-al00a_firmware *
huawei leland-tl10c_firmware *
huawei berkeley-l09_firmware *
huawei sydney-tl00_firmware *
netapp data_availability_services -
huawei p20_firmware *
netapp solidfire_baseboard_management_controller_firmware -
huawei lelandp-l22c_firmware *
huawei ares-tl00chw_firmware *
huawei yale-tl00b_firmware *
CVE-2019-5210 MEDIUM

Nova 5i pro and Nova 5 smartphones with versions earlier than 9.1.1.190(C00E190R6P2)and Versions earlier than 9.1.1.175(C00E170R3P2) have an improper validation of array index vulnerability. The system does not properly validate the input value before use it as an array index when processing certain image information. The attacker tricks the user into installing a malicious application, successful exploit could cause malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-129,

Products Affected

Vendor Product Version
huawei nova_5_firmware *
huawei nova_5i_pro_firmware *
CVE-2019-5211 MEDIUM

The Huawei Share function of P20 phones with versions earlier than Emily-L29C 9.1.0.311 has an improper file management vulnerability. The attacker tricks the victim to perform certain operations on the mobile phone during file transfer. Because the file is not properly processed, successfully exploit may cause some files on the victim's mobile phone are deleted.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.1 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p20_firmware *
CVE-2019-5212 MEDIUM

There is an improper access control vulnerability in Huawei Share. The software does not properly restrict access to certain file from certain application. An attacker tricks the user into installing a malicious application then establishing a connect to the attacker through Huawei Share, successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
huawei p20_firmware *
CVE-2019-5213 LOW

Honor play smartphones with versions earlier than Cornell-AL00A 9.1.0.321(C00E320R1P1T8) have an insufficient authentication vulnerability. The system has a logic judge error under certain scenario. Successful exploit could allow the attacker to modify the alarm clock settings after a serious of uncommon operations without unlock the screen lock.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_play_firmware *
CVE-2019-5214 HIGH

There is a use after free vulnerability on certain driver component in Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.167(C00E85R2P20T8). An attacker tricks the user into installing a malicious application, which make the software to reference memory after it has been freed. Successful exploit could cause a denial of service condition.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei mate_10_firmware *
CVE-2019-5215 MEDIUM

There is a man-in-the-middle (MITM) vulnerability on Huawei P30 smartphones versions before ELE-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1), and P30 Pro versions before VOG-AL00 9.1.0.162 (C01E160R1P12/C01E160R2P1). When users establish connection and transfer data through Huawei Share, an attacker could sniff, spoof and do a series of operations to intrude the Huawei Share connection and launch a man-in-the-middle attack to obtain and tamper the data. (Vulnerability ID: HWPSIRT-2019-03109)

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2019-5216 HIGH

There is a race condition vulnerability on Huawei Honor V10 smartphones versions earlier than Berkeley-AL20 9.0.0.156(C00E156R2P14T8), Honor 10 smartphones versions earlier than Columbia-AL10B 9.0.0.156(C00E156R1P20T8) and Honor Play smartphones versions earlier than Cornell-AL00A 9.0.0.156(C00E156R1P13T8). An attacker tricks the user into installing a malicious application, which makes multiple processes to operate the same variate at the same time. Successful exploit could cause execution of malicious code.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei honor_play_firmware *
huawei honor_view_10_firmware *
huawei honor_10_firmware *
CVE-2019-5217 LOW

There is an information disclosure vulnerability on Mate 9 Pro Huawei smartphones versions earlier than LON-AL00B9.0.1.150 (C00E61R1P8T8). An attacker could view the photos after a series of operations without unlocking the screen lock. Successful exploit could cause an information disclosure condition.

CVSS 2.0

Severity: LOW

Problem Type: CWE-307,

Products Affected

Vendor Product Version
huawei mate_9_pro_firmware *
CVE-2019-5218 MEDIUM

There is an insufficient authentication vulnerability in Huawei Band 2 and Honor Band 3. The band does not sufficiently authenticate the device try to connect to it in certain scenario. Successful exploit could allow the attacker to spoof then connect to the band.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei band_2_firmware *
huawei band_3_firmware *
CVE-2019-5219 MEDIUM

There is a double free vulnerability on certain drivers of Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.181(C00E87R2P20T8). An attacker tricks the user into installing a malicious application, which makes multiple processes operate the same resource at the same time. Successful exploit could cause a denial of service condition.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei mate_10_firmware *
CVE-2019-5220 LOW

There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. The system does not sufficiently verify the permission, an attacker could do a certain operation on certain step of setup wizard. Successful exploit could allow the attacker bypass the FRP protection. Affected products: Mate 20 X, versions earlier than Ever-AL00B 9.0.0.200(C00E200R2P1); Mate 20, versions earlier than Hima-AL00B/Hima-TL00B 9.0.0.200(C00E200R2P1); Honor Magic 2, versions earlier than Tony-AL00B/Tony-TL00B 9.0.0.182(C00E180R2P2).

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei honor_magic_2_firmware *
huawei mate_20_x_firmware *
CVE-2019-5221 LOW

There is a path traversal vulnerability on Huawei Share. The software does not properly validate the path, an attacker could crafted a file path when transporting file through Huawei Share, successful exploit could allow the attacker to transport a file to arbitrary path on the phone. Affected products: Mate 20 X versions earlier than Ever-L29B 9.1.0.300(C432E3R1P12), versions earlier than Ever-L29B 9.1.0.300(C636E3R2P1), and versions earlier than Ever-L29B 9.1.0.300(C185E3R3P1).

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei mate_20_x_firmware *
CVE-2019-5222 MEDIUM

There is an information disclosure vulnerability on Secure Input of certain Huawei smartphones in Versions earlier than Tony-AL00B 9.1.0.216(C00E214R2P1). The Secure Input does not properly limit certain system privilege. An attacker tricks the user to install a malicious application and successful exploit could result in information disclosure.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
huawei honor_magic_2_firmware *
CVE-2019-5223 MEDIUM

PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei pcmanager 9.1.3.1
CVE-2019-5224 MEDIUM

P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21) have an out of bounds read vulnerability. The system does not properly validate certain length parameter which an application transports to kernel. An attacker tricks the user to install a malicious application, successful exploit could cause out of bounds read and information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2019-5225 MEDIUM

P30, Mate 20, P30 Pro smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21), versions earlier than Hima-AL00B 9.1.0.135(C00E200R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R1P12) have a buffer overflow vulnerability on several , the system does not properly validate certain length parameter which an application transports to kernel. An attacker tricks the user to install a malicious application, successful exploit could cause malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2019-5226 MEDIUM

P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9.1.0.135(C00E133R2P1) and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade vulnerability. The device and HiSuite software do not validate the upgrade package sufficiently, so that the system of smartphone can be downgraded to an older version.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-346,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei p30_pro_firmware *
huawei p30_firmware *
huawei hisuite_firmware *
CVE-2019-5227 MEDIUM

P30, P30 Pro, Mate 20 smartphones with software of versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1), versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R2P1), versions earlier than Hima-AL00B 9.1.0.135(C00E133R2P1) and HiSuite with versions earlier than HiSuite 9.1.0.305 have a version downgrade vulnerability. The device and HiSuite software do not validate the upgrade package sufficiently, so that the system of smartphone can be downgraded to an older version.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-346,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei p30_pro_firmware *
huawei p30_firmware *
huawei hisuite_firmware *
CVE-2019-5228 MEDIUM

Certain detection module of P30, P30 Pro, Honor V20 smartphone whith Versions earlier than ELLE-AL00B 9.1.0.193(C00E190R1P21), Versions earlier than VOGUE-AL00A 9.1.0.193(C00E190R1P12), Versions earlier than Princeton-AL10B 9.1.0.233(C00E233R4P3) have a race condition vulnerability. The system does not lock certain function properly, when the function is called by multiple processes could cause out of bound write. An attacker tricks the user into installing a malicious application, successful exploit could cause malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,CWE-787,

Products Affected

Vendor Product Version
huawei honor_v20_firmware *
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2019-5229 MEDIUM

P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1) have an insufficient verification vulnerability. The system does not verify certain parameters sufficiently, an attacker should connect to the phone and gain high privilege to launch the attack, successful exploit could cause malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.2 MEDIUM CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2019-5230 MEDIUM

P20 Pro, P20, Mate RS smartphones with versions earlier than Charlotte-AL00A 9.1.0.321(C00E320R1P1T8), versions earlier than Emily-AL00A 9.1.0.321(C00E320R1P1T8), versions earlier than NEO-AL00D NEO-AL00 9.1.0.321(C786E320R1P1T8) have an improper validation vulnerability. The system does not perform a properly validation of certain input models, an attacker could trick the user to install a malicious application then craft a malformed model, successful exploit could allow the attacker to get and tamper certain output data information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p20_pro_firmware *
huawei p20_firmware *
huawei mate_rs_firmware *
CVE-2019-5231 LOW

P30 smartphones with versions earlier than ELLE-AL00B 9.1.0.186(C00E180R2P1) have an improper authorization vulnerability. The software incorrectly performs an authorization check when a user attempts to perform certain action. Successful exploit could allow the attacker to update a crafted package.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2019-5232 MEDIUM

There is a use of insufficiently random values vulnerability in Huawei ViewPoint products. An unauthenticated, remote attacker can guess information by a large number of attempts. Successful exploitation may cause information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-330,

Products Affected

Vendor Product Version
huawei vp9660_firmware v500r002c10
huawei vp9660_firmware v500r002c00
huawei vp9650_firmware v500r002c00
huawei vp9650_firmware v500r002c10
huawei vp9630_firmware v500r002c10
huawei vp9630_firmware v500r002c00
CVE-2019-5233 MEDIUM

Huawei smartphones with versions earlier than Taurus-AL00B 10.0.0.41(SP2C00E41R3P2) have an improper authentication vulnerability. Successful exploitation may cause the attacker to access specific components.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei taurus-al00b_firmware *
CVE-2019-5235 MEDIUM

Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei johnson-l21d_firmware 8.2.0.131(c55custc55d1)
huawei johnson-tl00d_firmware 8.2.0.100(c541custc541d1)
huawei tony-tl00b_firmware 9.1.0.206(c01e200r2p3)
huawei elle-tl00b_firmware 9.1.0.162(c01e160r2p1)
huawei columbia-tl00d_firmware 8.1.0.186(c01gt)
huawei johnson-l21c_firmware 8.2.0.136(c432custc432d1)
huawei tony-al00b_firmware 9.1.0.206(c00e200r2p3)
huawei johnson-l23c_firmware 8.2.0.133(c605custc605d1)
huawei alp-tl00b_firmware 8.0.0.129(sp2c01)
huawei columbia-l29d_firmware 8.1.0.148(c185)
huawei johnson-l22d_firmware 8.2.0.107(c636r2p1)
huawei jackman-l23_firmware 8.2.0.162(c605)
huawei ever-l29b_firmware 9.0.0.208(c432e3r1p12)
huawei vogue-al10c_firmware 9.1.0.162(c00e160r2p1)
huawei ever-l29b_firmware 9.0.0.207(c636e3r2p1)
huawei princeton-al10i_firmware 9.0.1.150(c675e9r1p4)
huawei elle-al00b_firmware 9.1.0.162(c00e160r2p1)
huawei harry-al10b_firmware 9.1.0.206(c00e205r3p1)
huawei johnson-l42if_firmware 8.2.0.155(c675r2p1)
huawei johnson-al10c_firmware 8.2.0.165(c00r1p16)
huawei vogue-al10c-preload_firmware 9.1.0.12(c00r1)
huawei bla-al00b_firmware 8.0.0.129(sp2c786)
huawei johnson-tl00d_firmware 8.2.0.165(c01r1p16)
huawei johnson-tl00f_firmware 8.2.0.100(c541custc541d1)
huawei potter-al10a_firmware 9.1.0.208(c00e205r3p1)
huawei johnson-l21c_firmware 8.2.0.131(c10r2p2)
huawei princeton-tl10c_firmware 9.1.0.211(c01e203r2p2)
huawei jackman-l22_firmware 8.2.0.156(c636r2p2)
huawei johnson-l22c_firmware 8.2.0.107(c636r2p1)
huawei johnson-l21d_firmware 8.2.0.101(c432custc432d1)
huawei princeton-al10d_firmware 9.1.0.212(c00e204r2p2)
huawei columbia-l29d_firmware 8.1.0.146(c461)
huawei johnson-l22c_firmware 8.2.0.105(c185r1p1)
huawei bla-tl00b_firmware 8.0.0.129(sp2c01)
huawei charlotte-tl00b_firmware 8.1.0.176(c01)
huawei harry-tl00c_firmware 9.0.1.162(c01e160r2p3)
huawei laya-al00ep_firmware 9.0.0.201(c786e200r2p1)
huawei vogue-al00a_firmware 9.1.0.162(c00e160r2p1)
huawei charlotte-al00a_firmware 8.1.0.176(c00)
huawei columbia-l29d_firmware 8.1.0.151(c432)
huawei columbia-al10b_firmware 8.1.0.163(c00)
huawei jackman-l23_firmware 8.2.0.152(c45custc45d1)
huawei potter-al00c_firmware 9.1.0.208(c00e205r3p1)
huawei bla-al00b_firmware 8.0.0.153(c00)
huawei vogue-al00a-preload_firmware 9.1.0.12(c00r1)
huawei harry-al10b_firmware -
huawei johnson-l22d_firmware 8.2.0.105(c185r2p1)
huawei neo-al00d_firmware 8.1.0.175(c786)
huawei vogue-tl00b_firmware 9.1.0.162(c01e160r2p1)
huawei jackman-l21_firmware 8.2.0.160(c185)
huawei johnson-l42ie_firmware 8.2.0.155(c675r2p1)
huawei columbia-al10i_firmware 8.1.0.150(c675custc675d2)
huawei ever-al00b_firmware 9.0.0.195(c00e195r2p1)
huawei harry-al00c_firmware 9.1.0.206(c00e205r3p1)
huawei johnson-l23c_firmware 8.2.0.130(c636custc636d2)
huawei hima-al00b_firmware 9.0.0.200(c00e200r2p1)
huawei johnson-l42ic_firmware 8.2.0.155(c675r2p1)
huawei princeton-al10b_firmware 9.1.0.211(c00e203r2p2)
huawei ever-l29b_firmware 9.0.0.206(c185e3r3p1)
huawei johnson-l21c_firmware 8.2.0.130(c461r1p1)
huawei johnson-l21d_firmware 8.2.0.101(c10custc10d1)
huawei alp-al00b_firmware 8.0.0.153(c00)
huawei johnson-al00ic_firmware 8.2.0.161(c675custc675d1)
huawei emily-tl00b_firmware 8.1.0.175(c01)
huawei emily-al00a_firmware 8.1.0.190(c00)
huawei columbia-l29d_firmware 8.1.0.151(c10)
CVE-2019-5236 MEDIUM

Huawei smart phones Emily-L29C with versions of 8.1.0.132a(C432), 8.1.0.135(C782), 8.1.0.154(C10), 8.1.0.154(C461), 8.1.0.154(C635), 8.1.0.156(C185), 8.1.0.156(C605), 8.1.0.159(C636) have a double free vulnerability. An attacker can trick a user to click a URL to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei emily-l29c_firmware 8.1.0.132a(c432)
huawei emily-l29c_firmware 8.1.0.135(c782)
huawei emily-l29c_firmware 8.1.0.154(c10)
huawei emily-l29c_firmware 8.1.0.156(c605)
huawei emily-l29c_firmware 8.1.0.156(c185)
huawei emily-l29c_firmware 8.1.0.154(c635)
huawei emily-l29c_firmware 8.1.0.154(c461)
huawei emily-l29c_firmware 8.1.0.159(c636)
CVE-2019-5237 MEDIUM

Huawei PCManager with the versions before 9.0.1.66 (Oversea) and versions before 9.0.1.70 (China) have a code execution vulnerability. Successful exploitation may cause the attacker to execute code and read/write information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager(oversea) *
huawei pcmanager(china) *
CVE-2019-5238 MEDIUM

Huawei PCManager with the versions before 9.0.1.66 (Oversea) and versions before 9.0.1.70 (China) have a code execution vulnerability. Successful exploitation may cause the attacker to execute code and read/write information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager(oversea) *
huawei pcmanager(china) *
CVE-2019-5239 MEDIUM

Huawei PCManager with the versions before 9.0.1.66 (Oversea) and versions before 9.0.1.70 (China) have an information leak vulnerability. Successful exploitation may cause the attacker to read information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager(oversea) *
huawei pcmanager(china) *
CVE-2019-5241 HIGH

There is a privilege escalation vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50. The attacker can tricking a user to install and run a malicious application to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager *
CVE-2019-5242 HIGH

There is a code execution vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50. The attacker can tricking a user to install and run a malicious application to exploit this vulnerability. Successful exploitation may cause the attacker to execute malicious code and read/write memory.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager *
CVE-2019-5243 MEDIUM

There is a Clickjacking vulnerability in Huawei HG255s product. An attacker may trick user to click a link and affect the integrity of a device by exploiting this vulnerability.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-1021,

Products Affected

Vendor Product Version
huawei hg255s_firmware -
CVE-2019-5244 MEDIUM

Mate 9 Pro Huawei smartphones earlier than LON-L29C 8.0.0.361(C636) versions have an information leak vulnerability due to the lack of input validation. An attacker tricks the user who has root privilege to install an application on the smart phone, and the application can read some process information, which may cause sensitive information leak.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei mate_9_pro_fimware *
CVE-2019-5245 MEDIUM

HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing that could execute arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,

Products Affected

Vendor Product Version
huawei hisuite *
CVE-2019-5246 MEDIUM

Smartphones with software of ELLE-AL00B 9.1.0.109(C00E106R1P21), 9.1.0.113(C00E110R1P21), 9.1.0.125(C00E120R1P21), 9.1.0.135(C00E130R1P21), 9.1.0.153(C00E150R1P21), 9.1.0.155(C00E150R1P21), 9.1.0.162(C00E160R2P1) have an insufficient verification vulnerability. The system does not verify certain parameters sufficiently, an attacker should connect to the phone and gain high privilege to launch the attack. Successful exploit could cause DOS or malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.2 MEDIUM CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei elle-al00b_firmware 9.1.0.113(c00e110r1p21)
huawei elle-al00b_firmware 9.1.0.153(c00e150r1p21)
huawei elle-al00b_firmware 9.1.0.162(c00e160r2p1)
huawei elle-al00b_firmware 9.1.0.135(c00e130r1p21)
huawei elle-al00b_firmware 9.1.0.109(c00e106r1p21)
huawei elle-al00b_firmware 9.1.0.125(c00e120r1p21)
huawei elle-al00b_firmware 9.1.0.155(c00e150r1p21)
CVE-2019-5247 LOW

Huawei Atlas 300, Atlas 500 have a buffer overflow vulnerability. A local, authenticated attacker may craft specific parameter and send to the process to exploit this vulnerability. Successfully exploit may cause service crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei atlas_300_firmware *
huawei atlas_500_firmware *
CVE-2019-5248 MEDIUM

CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. As a result, the attacker can exploit this vulnerability to cause DoS attacks on the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H 2.8 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r001c00spc600
huawei cloudengine_12800_firmware v200r001c00spc700
huawei cloudengine_12800_firmware v200r002c01
huawei cloudengine_12800_firmware v200r002c50spc800pwe
CVE-2019-5250 MEDIUM

Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation of certain privilege, the attacker could trick the user into installing a malicious application before the user turns on student mode function. Successful exploit could allow the attacker to bypass the limit of student mode function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei mate_20_pro_firmware *
CVE-2019-5251 MEDIUM

There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei honor_20s_firmware *
huawei p30_pro_firmware *
huawei p30_firmware *
huawei m6_firmware *
huawei honor_9i_firmware *
huawei honor_v10_firmware *
huawei honor_9_lite_firmware *
huawei enjoy_7s_firmware *
CVE-2019-5252 LOW

There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.5 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 0.9 2.5

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_8x_firmware *
huawei y9_firmware *
huawei y6_pro_firmware *
huawei honor_9i_firmware *
huawei enjoy_8_plus_firmware *
huawei honor_9_lite_firmware *
CVE-2019-5253 HIGH

E5572-855 with versions earlier than 8.0.1.3(H335SP1C233) has an improper authentication vulnerability. The device does not perform a sufficient authentication when doing certain operations, successful exploit could allow an attacker to cause the device to reboot after launch a man in the middle attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei e5572-855_firmware *
CVE-2019-5254 MEDIUM

Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have an out-of-bounds read vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. Due to insufficient validation of the message, successful exploit may cause the affected board to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H 3.9 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ips_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc100
huawei usg6000v_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c50pwe
huawei nip6800_firmware v500r001c50pwe
huawei usg6000v_firmware v500r003c00spc100
huawei ips_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c60spc100
huawei secospace_usg6300_firmware v500r001c30spc100pwe
huawei secospace_usg6600_firmware v100r001c20spc200
huawei nip6600_firmware v500r001c30spc100
huawei secospace_usg6500_firmware v500r001c20spc200
huawei nip6600_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ap2000_firmware v200r005c30
huawei ngfw_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c00sph508
huawei nip6300_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc050
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c50spc009
huawei secospace_antiddos8000_firmware v500r001c60spc600
huawei secospace_usg6600_firmware v500r001c60spc200
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg6000v_firmware v500r001c10
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20spc101
huawei nip6600_firmware v500r001c30spc200
huawei ngfw_firmware v500r001c00spc500pwe
huawei secospace_usg6500_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v100r001c10spc200
huawei secospace_usg6600_firmware v500r001c80
huawei ips_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc300
huawei nip6300_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c30spc600pwe
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50pwe
huawei secospace_usg6600_firmware v500r001c80pwe
huawei ngfw_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v100r001c20spc100
huawei secospace_usg6600_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v100r001c10spc201
huawei ips_firmware v500r001c20spc100pwe
huawei ips_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei ips_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c50
huawei ips_firmware v500r001c20spc200pwe
huawei usg6000v_firmware v500r001c20spc300
huawei ips_firmware v500r001c20spc100
huawei ngfw_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c00sph508
huawei ips_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c30spc300
huawei nip6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c30spc601
huawei secospace_antiddos8000_firmware v500r001c20spc300
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60spc200pwe
huawei secospace_antiddos8000_firmware v500r001c20spc500
huawei nip6300_firmware v500r001c30spc100pwe
huawei secospace_antiddos8000_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6800_firmware v500r001c80
huawei nip6600_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc100pwe
huawei ips_firmware v500r001c30spc200
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50spc200pwe
huawei secospace_usg6500_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c50spc100pwe
huawei nip6300_firmware v500r001c20
huawei ngfw_firmware v500r001c20spc100
huawei ips_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c00spc500
huawei usg6000v_firmware v500r001c10spc200
huawei ngfw_firmware v500r002c30
huawei s5700_firmware v200r005c03
huawei ngfw_firmware v500r002c00spc200
huawei secospace_usg6500_firmware v500r005c00
huawei ips_firmware v500r001c00sph508
huawei secospace_usg6300_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c50spc100
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei ap2000_firmware v200r006c10
huawei ap2000_firmware v200r007c10
huawei ngfw_firmware v500r001c20spc300pwe
huawei secospace_usg6600_firmware v500r001c60spc300
huawei nip6300_firmware v500r001c00spc500
huawei ngfw_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc090
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c20spc101
huawei secospace_usg6600_firmware v100r001c00spc200
huawei ap2000_firmware v200r008c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_antiddos8000_firmware v500r001c20spc600
huawei ips_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6600_firmware v500r001c30spc100pwe
huawei svn5800_firmware v200r003c00spc100
huawei ngfw_firmware v500r002c10pwe
huawei usg6000v_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30spc200pwe
huawei usg6000v_firmware v500r001c20spc500
huawei ap2000_firmware v200r006c20
huawei secospace_usg6300_firmware v500r001c20spc100
huawei ngfw_firmware v500r002c10
huawei ap2000_firmware v200r009c00
huawei usg6000v_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc100
huawei secospace_antiddos8000_firmware v500r001c60spc200
huawei ips_firmware v500r001c00spc300
huawei ips_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc600
huawei nip6300_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c30spc300
huawei espace_u1981_firmware v200r003c50spc700
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei usg6000v_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c00spc500
huawei ips_firmware v500r001c20spc200b062
huawei ips_firmware v500r001c30spc100pwe
huawei secospace_usg6500_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c20spc200b062
huawei secospace_usg6600_firmware v500r001c60spc100pwe
huawei usg6000v_firmware v500r001c10spc100
huawei ips_firmware v500r001c30spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc500
huawei svn5800-c_firmware v200r003c00spc100
huawei usg6000v_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c30spc100pwe
huawei nip6300_firmware v500r001c30spc100
huawei nip6600_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c50pwe
huawei secospace_antiddos8000_firmware v500r001c20spc200
huawei ips_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r001c60spc300
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v500r005c00spc102
huawei secospace_usg6600_firmware v500r001c30spc200pwe
huawei ips_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc500
huawei ips_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc100pwe
huawei ap2000_firmware v200r008c00
huawei usg6000v_firmware v500r001c20spc600
huawei secospace_usg6600_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc101
huawei nip6600_firmware v500r005c00
huawei usg6000v_firmware v500r003c00
huawei ngfw_firmware v500r002c00spc100pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c20spc200
huawei nip6300_firmware v500r001c00spc300
huawei ips_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_firmware v500r005c00
huawei nip6600_firmware v500r001c30
huawei ngfw_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei ngfw_firmware v500r001c20spc100pwe
huawei ngfw_firmware v500r002c30pwe
huawei secospace_usg6600_firmware v500r001c50spc300
huawei secospace_antiddos8000_firmware v500r001c00
huawei nip6300_firmware v500r001c20spc200
huawei svn5600_firmware v200r003c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc700
huawei ap2000_firmware v200r007c20
huawei secospace_usg6600_firmware v500r001c50spc200
huawei semg9811_firmware v500r002c30
huawei semg9811_firmware v500r002c20
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei ngfw_firmware v500r002c00spc100
huawei semg9811_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei nip6300_firmware v500r001c50pwe
huawei nip6300_firmware v500r001c30spc200pwe
huawei ngfw_firmware v500r002c00
CVE-2019-5255 LOW

Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have a DoS vulnerability. An attacker may send crafted messages from a FTP client to exploit this vulnerability. Due to insufficient validation of the message, successful exploit may cause the system out-of-bounds read and result in a denial of service condition of the affected service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ips_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc100
huawei usg6000v_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c50pwe
huawei nip6800_firmware v500r001c50pwe
huawei usg6000v_firmware v500r003c00spc100
huawei ips_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c60spc100
huawei secospace_usg6300_firmware v500r001c30spc100pwe
huawei secospace_usg6600_firmware v100r001c20spc200
huawei nip6600_firmware v500r001c30spc100
huawei secospace_usg6500_firmware v500r001c20spc200
huawei nip6600_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ap2000_firmware v200r005c30
huawei ngfw_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c00sph508
huawei nip6300_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc050
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c50spc009
huawei secospace_antiddos8000_firmware v500r001c60spc600
huawei secospace_usg6600_firmware v500r001c60spc200
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg6000v_firmware v500r001c10
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20spc101
huawei nip6600_firmware v500r001c30spc200
huawei ngfw_firmware v500r001c00spc500pwe
huawei secospace_usg6500_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v100r001c10spc200
huawei secospace_usg6600_firmware v500r001c80
huawei ips_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc300
huawei nip6300_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c30spc600pwe
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50pwe
huawei secospace_usg6600_firmware v500r001c80pwe
huawei ngfw_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v100r001c20spc100
huawei secospace_usg6600_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v100r001c10spc201
huawei ips_firmware v500r001c20spc100pwe
huawei ips_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei ips_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c50
huawei ips_firmware v500r001c20spc200pwe
huawei usg6000v_firmware v500r001c20spc300
huawei ips_firmware v500r001c20spc100
huawei ngfw_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c00sph508
huawei ips_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c30spc300
huawei nip6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c30spc601
huawei secospace_antiddos8000_firmware v500r001c20spc300
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60spc200pwe
huawei secospace_antiddos8000_firmware v500r001c20spc500
huawei nip6300_firmware v500r001c30spc100pwe
huawei secospace_antiddos8000_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6800_firmware v500r001c80
huawei nip6600_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc100pwe
huawei ips_firmware v500r001c30spc200
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50spc200pwe
huawei secospace_usg6500_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c50spc100pwe
huawei nip6300_firmware v500r001c20
huawei ngfw_firmware v500r001c20spc100
huawei ips_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c00spc500
huawei usg6000v_firmware v500r001c10spc200
huawei ngfw_firmware v500r002c30
huawei s5700_firmware v200r005c03
huawei ngfw_firmware v500r002c00spc200
huawei secospace_usg6500_firmware v500r005c00
huawei ips_firmware v500r001c00sph508
huawei secospace_usg6300_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c50spc100
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei ap2000_firmware v200r006c10
huawei ap2000_firmware v200r007c10
huawei ngfw_firmware v500r001c20spc300pwe
huawei secospace_usg6600_firmware v500r001c60spc300
huawei nip6300_firmware v500r001c00spc500
huawei ngfw_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc090
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c20spc101
huawei secospace_usg6600_firmware v100r001c00spc200
huawei ap2000_firmware v200r008c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_antiddos8000_firmware v500r001c20spc600
huawei ips_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6600_firmware v500r001c30spc100pwe
huawei svn5800_firmware v200r003c00spc100
huawei ngfw_firmware v500r002c10pwe
huawei usg6000v_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30spc200pwe
huawei usg6000v_firmware v500r001c20spc500
huawei ap2000_firmware v200r006c20
huawei secospace_usg6300_firmware v500r001c20spc100
huawei ngfw_firmware v500r002c10
huawei ap2000_firmware v200r009c00
huawei usg6000v_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc100
huawei secospace_antiddos8000_firmware v500r001c60spc200
huawei ips_firmware v500r001c00spc300
huawei ips_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc600
huawei nip6300_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c30spc300
huawei espace_u1981_firmware v200r003c50spc700
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei usg6000v_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c00spc500
huawei ips_firmware v500r001c20spc200b062
huawei ips_firmware v500r001c30spc100pwe
huawei secospace_usg6500_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c20spc200b062
huawei secospace_usg6600_firmware v500r001c60spc100pwe
huawei usg6000v_firmware v500r001c10spc100
huawei ips_firmware v500r001c30spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc500
huawei svn5800-c_firmware v200r003c00spc100
huawei usg6000v_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c30spc100pwe
huawei nip6300_firmware v500r001c30spc100
huawei nip6600_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c50pwe
huawei secospace_antiddos8000_firmware v500r001c20spc200
huawei ips_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r001c60spc300
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v500r005c00spc102
huawei secospace_usg6600_firmware v500r001c30spc200pwe
huawei ips_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc500
huawei ips_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc100pwe
huawei ap2000_firmware v200r008c00
huawei usg6000v_firmware v500r001c20spc600
huawei secospace_usg6600_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc101
huawei nip6600_firmware v500r005c00
huawei usg6000v_firmware v500r003c00
huawei ngfw_firmware v500r002c00spc100pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c20spc200
huawei nip6300_firmware v500r001c00spc300
huawei ips_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_firmware v500r005c00
huawei nip6600_firmware v500r001c30
huawei ngfw_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei ngfw_firmware v500r001c20spc100pwe
huawei ngfw_firmware v500r002c30pwe
huawei secospace_usg6600_firmware v500r001c50spc300
huawei secospace_antiddos8000_firmware v500r001c00
huawei nip6300_firmware v500r001c20spc200
huawei svn5600_firmware v200r003c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc700
huawei ap2000_firmware v200r007c20
huawei secospace_usg6600_firmware v500r001c50spc200
huawei semg9811_firmware v500r002c30
huawei semg9811_firmware v500r002c20
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei ngfw_firmware v500r002c00spc100
huawei semg9811_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei nip6300_firmware v500r001c50pwe
huawei nip6300_firmware v500r001c30spc200pwe
huawei ngfw_firmware v500r002c00
CVE-2019-5256 LOW

Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have a null pointer dereference vulnerability. The system dereferences a pointer that it expects to be valid, but is NULL. A local attacker could exploit this vulnerability by sending crafted parameters. A successful exploit could cause a denial of service and the process reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei ips_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc100
huawei usg6000v_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c50pwe
huawei nip6800_firmware v500r001c50pwe
huawei usg6000v_firmware v500r003c00spc100
huawei ips_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c60spc100
huawei secospace_usg6300_firmware v500r001c30spc100pwe
huawei secospace_usg6600_firmware v100r001c20spc200
huawei nip6600_firmware v500r001c30spc100
huawei secospace_usg6500_firmware v500r001c20spc200
huawei nip6600_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ap2000_firmware v200r005c30
huawei ngfw_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c00sph508
huawei nip6300_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc050
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c50spc009
huawei secospace_antiddos8000_firmware v500r001c60spc600
huawei secospace_usg6600_firmware v500r001c60spc200
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg6000v_firmware v500r001c10
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20spc101
huawei nip6600_firmware v500r001c30spc200
huawei ngfw_firmware v500r001c00spc500pwe
huawei secospace_usg6500_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v100r001c10spc200
huawei secospace_usg6600_firmware v500r001c80
huawei ips_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc300
huawei nip6300_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c30spc600pwe
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50pwe
huawei secospace_usg6600_firmware v500r001c80pwe
huawei ngfw_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v100r001c20spc100
huawei secospace_usg6600_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v100r001c10spc201
huawei ips_firmware v500r001c20spc100pwe
huawei ips_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei ips_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c50
huawei ips_firmware v500r001c20spc200pwe
huawei usg6000v_firmware v500r001c20spc300
huawei ips_firmware v500r001c20spc100
huawei ngfw_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c00sph508
huawei ips_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c30spc300
huawei nip6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c30spc601
huawei secospace_antiddos8000_firmware v500r001c20spc300
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60spc200pwe
huawei secospace_antiddos8000_firmware v500r001c20spc500
huawei nip6300_firmware v500r001c30spc100pwe
huawei secospace_antiddos8000_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6800_firmware v500r001c80
huawei nip6600_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc100pwe
huawei ips_firmware v500r001c30spc200
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50spc200pwe
huawei secospace_usg6500_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c50spc100pwe
huawei nip6300_firmware v500r001c20
huawei ngfw_firmware v500r001c20spc100
huawei ips_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c00spc500
huawei usg6000v_firmware v500r001c10spc200
huawei ngfw_firmware v500r002c30
huawei s5700_firmware v200r005c03
huawei ngfw_firmware v500r002c00spc200
huawei secospace_usg6500_firmware v500r005c00
huawei ips_firmware v500r001c00sph508
huawei secospace_usg6300_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c50spc100
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei ap2000_firmware v200r006c10
huawei ap2000_firmware v200r007c10
huawei ngfw_firmware v500r001c20spc300pwe
huawei secospace_usg6600_firmware v500r001c60spc300
huawei nip6300_firmware v500r001c00spc500
huawei ngfw_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc090
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c20spc101
huawei secospace_usg6600_firmware v100r001c00spc200
huawei ap2000_firmware v200r008c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_antiddos8000_firmware v500r001c20spc600
huawei ips_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6600_firmware v500r001c30spc100pwe
huawei svn5800_firmware v200r003c00spc100
huawei ngfw_firmware v500r002c10pwe
huawei usg6000v_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30spc200pwe
huawei usg6000v_firmware v500r001c20spc500
huawei ap2000_firmware v200r006c20
huawei secospace_usg6300_firmware v500r001c20spc100
huawei ngfw_firmware v500r002c10
huawei ap2000_firmware v200r009c00
huawei usg6000v_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc100
huawei secospace_antiddos8000_firmware v500r001c60spc200
huawei ips_firmware v500r001c00spc300
huawei ips_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc600
huawei nip6300_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c30spc300
huawei espace_u1981_firmware v200r003c50spc700
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei usg6000v_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c00spc500
huawei ips_firmware v500r001c20spc200b062
huawei ips_firmware v500r001c30spc100pwe
huawei secospace_usg6500_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c20spc200b062
huawei secospace_usg6600_firmware v500r001c60spc100pwe
huawei usg6000v_firmware v500r001c10spc100
huawei ips_firmware v500r001c30spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc500
huawei svn5800-c_firmware v200r003c00spc100
huawei usg6000v_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c30spc100pwe
huawei nip6300_firmware v500r001c30spc100
huawei nip6600_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c50pwe
huawei secospace_antiddos8000_firmware v500r001c20spc200
huawei ips_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r001c60spc300
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v500r005c00spc102
huawei secospace_usg6600_firmware v500r001c30spc200pwe
huawei ips_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc500
huawei ips_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc100pwe
huawei ap2000_firmware v200r008c00
huawei usg6000v_firmware v500r001c20spc600
huawei secospace_usg6600_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc101
huawei nip6600_firmware v500r005c00
huawei usg6000v_firmware v500r003c00
huawei ngfw_firmware v500r002c00spc100pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c20spc200
huawei nip6300_firmware v500r001c00spc300
huawei ips_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_firmware v500r005c00
huawei nip6600_firmware v500r001c30
huawei ngfw_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei ngfw_firmware v500r001c20spc100pwe
huawei ngfw_firmware v500r002c30pwe
huawei secospace_usg6600_firmware v500r001c50spc300
huawei secospace_antiddos8000_firmware v500r001c00
huawei nip6300_firmware v500r001c20spc200
huawei svn5600_firmware v200r003c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc700
huawei ap2000_firmware v200r007c20
huawei secospace_usg6600_firmware v500r001c50spc200
huawei semg9811_firmware v500r002c30
huawei semg9811_firmware v500r002c20
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei ngfw_firmware v500r002c00spc100
huawei semg9811_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei nip6300_firmware v500r001c50pwe
huawei nip6300_firmware v500r001c30spc200pwe
huawei ngfw_firmware v500r002c00
CVE-2019-5257 LOW

Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace) have a resource management vulnerability. An attacker who logs in to the board may send crafted messages from the internal network.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei ips_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc100
huawei usg6000v_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c50pwe
huawei nip6800_firmware v500r001c50pwe
huawei usg6000v_firmware v500r003c00spc100
huawei ips_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c60spc100
huawei secospace_usg6300_firmware v500r001c30spc100pwe
huawei secospace_usg6600_firmware v100r001c20spc200
huawei nip6600_firmware v500r001c30spc100
huawei secospace_usg6500_firmware v500r001c20spc200
huawei nip6600_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ap2000_firmware v200r005c30
huawei ngfw_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c00sph508
huawei nip6300_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc050
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c50spc009
huawei secospace_antiddos8000_firmware v500r001c60spc600
huawei secospace_usg6600_firmware v500r001c60spc200
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg6000v_firmware v500r001c10
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20spc101
huawei nip6600_firmware v500r001c30spc200
huawei ngfw_firmware v500r001c00spc500pwe
huawei secospace_usg6500_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v100r001c10spc200
huawei secospace_usg6600_firmware v500r001c80
huawei ips_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc300
huawei nip6300_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c30spc600pwe
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50pwe
huawei secospace_usg6600_firmware v500r001c80pwe
huawei ngfw_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v100r001c20spc100
huawei secospace_usg6600_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v100r001c10spc201
huawei ips_firmware v500r001c20spc100pwe
huawei ips_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei ips_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c50
huawei ips_firmware v500r001c20spc200pwe
huawei usg6000v_firmware v500r001c20spc300
huawei ips_firmware v500r001c20spc100
huawei ngfw_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c00sph508
huawei ips_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c30spc300
huawei nip6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c30spc601
huawei secospace_antiddos8000_firmware v500r001c20spc300
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60spc200pwe
huawei secospace_antiddos8000_firmware v500r001c20spc500
huawei nip6300_firmware v500r001c30spc100pwe
huawei secospace_antiddos8000_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6800_firmware v500r001c80
huawei nip6600_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc100pwe
huawei ips_firmware v500r001c30spc200
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50spc200pwe
huawei secospace_usg6500_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c50spc100pwe
huawei nip6300_firmware v500r001c20
huawei ngfw_firmware v500r001c20spc100
huawei ips_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c00spc500
huawei usg6000v_firmware v500r001c10spc200
huawei ngfw_firmware v500r002c30
huawei s5700_firmware v200r005c03
huawei ngfw_firmware v500r002c00spc200
huawei secospace_usg6500_firmware v500r005c00
huawei ips_firmware v500r001c00sph508
huawei secospace_usg6300_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c50spc100
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei ap2000_firmware v200r006c10
huawei ap2000_firmware v200r007c10
huawei ngfw_firmware v500r001c20spc300pwe
huawei secospace_usg6600_firmware v500r001c60spc300
huawei nip6300_firmware v500r001c00spc500
huawei ngfw_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc090
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c20spc101
huawei secospace_usg6600_firmware v100r001c00spc200
huawei ap2000_firmware v200r008c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_antiddos8000_firmware v500r001c20spc600
huawei ips_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6600_firmware v500r001c30spc100pwe
huawei svn5800_firmware v200r003c00spc100
huawei ngfw_firmware v500r002c10pwe
huawei usg6000v_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30spc200pwe
huawei usg6000v_firmware v500r001c20spc500
huawei ap2000_firmware v200r006c20
huawei secospace_usg6300_firmware v500r001c20spc100
huawei ngfw_firmware v500r002c10
huawei ap2000_firmware v200r009c00
huawei usg6000v_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc100
huawei secospace_antiddos8000_firmware v500r001c60spc200
huawei ips_firmware v500r001c00spc300
huawei ips_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc600
huawei nip6300_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c30spc300
huawei espace_u1981_firmware v200r003c50spc700
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei usg6000v_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c00spc500
huawei ips_firmware v500r001c20spc200b062
huawei ips_firmware v500r001c30spc100pwe
huawei secospace_usg6500_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c20spc200b062
huawei secospace_usg6600_firmware v500r001c60spc100pwe
huawei usg6000v_firmware v500r001c10spc100
huawei ips_firmware v500r001c30spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc500
huawei svn5800-c_firmware v200r003c00spc100
huawei usg6000v_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c30spc100pwe
huawei nip6300_firmware v500r001c30spc100
huawei nip6600_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c50pwe
huawei secospace_antiddos8000_firmware v500r001c20spc200
huawei ips_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r001c60spc300
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v500r005c00spc102
huawei secospace_usg6600_firmware v500r001c30spc200pwe
huawei ips_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc500
huawei ips_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc100pwe
huawei ap2000_firmware v200r008c00
huawei usg6000v_firmware v500r001c20spc600
huawei secospace_usg6600_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc101
huawei nip6600_firmware v500r005c00
huawei usg6000v_firmware v500r003c00
huawei ngfw_firmware v500r002c00spc100pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c20spc200
huawei nip6300_firmware v500r001c00spc300
huawei ips_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_firmware v500r005c00
huawei nip6600_firmware v500r001c30
huawei ngfw_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei ngfw_firmware v500r001c20spc100pwe
huawei ngfw_firmware v500r002c30pwe
huawei secospace_usg6600_firmware v500r001c50spc300
huawei secospace_antiddos8000_firmware v500r001c00
huawei nip6300_firmware v500r001c20spc200
huawei svn5600_firmware v200r003c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc700
huawei ap2000_firmware v200r007c20
huawei secospace_usg6600_firmware v500r001c50spc200
huawei semg9811_firmware v500r002c30
huawei semg9811_firmware v500r002c20
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei ngfw_firmware v500r002c00spc100
huawei semg9811_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei nip6300_firmware v500r001c50pwe
huawei nip6300_firmware v500r001c30spc200pwe
huawei ngfw_firmware v500r002c00
CVE-2019-5258 LOW

Certain Huawei products (AP2000;IPS Module;NGFW Module;NIP6300;NIP6600;NIP6800;S5700;SVN5600;SVN5800;SVN5800-C;SeMG9811;Secospace AntiDDoS8000;Secospace USG6300;Secospace USG6500;Secospace USG6600;USG6000V;eSpace U1981) have a buffer overflow vulnerability. An attacker who logs in to the board may send crafted messages from the internal network port or tamper with inter-process message packets to exploit this vulnerability. Due to insufficient validation of the message, successful exploit may cause the affected board to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei ips_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc100
huawei usg6000v_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c50pwe
huawei nip6800_firmware v500r001c50pwe
huawei usg6000v_firmware v500r003c00spc100
huawei ips_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c00sph508
huawei secospace_usg6600_firmware v500r001c60spc100
huawei secospace_usg6300_firmware v500r001c30spc100pwe
huawei secospace_usg6600_firmware v100r001c20spc200
huawei nip6600_firmware v500r001c30spc100
huawei secospace_usg6500_firmware v500r001c20spc200
huawei nip6600_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c20spc300b078
huawei ap2000_firmware v200r005c30
huawei ngfw_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c00sph508
huawei nip6300_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc050
huawei nip6600_firmware v500r001c20spc300b078
huawei secospace_usg6500_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c50spc009
huawei secospace_antiddos8000_firmware v500r001c60spc600
huawei secospace_usg6600_firmware v500r001c60spc200
huawei secospace_usg6600_firmware v500r001c20spc300pwe
huawei usg6000v_firmware v500r001c10
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6500_firmware v500r001c20spc101
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c20spc101
huawei nip6600_firmware v500r001c30spc200
huawei ngfw_firmware v500r001c00spc500pwe
huawei secospace_usg6500_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v100r001c10spc200
huawei secospace_usg6600_firmware v500r001c80
huawei ips_firmware v500r001c20spc300b078
huawei ngfw_firmware v500r002c00spc300
huawei nip6300_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c20spc200
huawei ngfw_firmware v500r001c20spc200
huawei secospace_usg6600_firmware v500r001c30spc600pwe
huawei secospace_usg6500_firmware v500r001c20spc100
huawei secospace_usg6500_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50pwe
huawei secospace_usg6600_firmware v500r001c80pwe
huawei ngfw_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v100r001c20spc100
huawei secospace_usg6600_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v100r001c10spc201
huawei ips_firmware v500r001c20spc100pwe
huawei ips_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c20spc300
huawei nip6300_firmware v500r001c00sph508
huawei ips_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c50
huawei ips_firmware v500r001c20spc200pwe
huawei usg6000v_firmware v500r001c20spc300
huawei ips_firmware v500r001c20spc100
huawei ngfw_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c00sph508
huawei ips_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c30spc300
huawei nip6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c30spc601
huawei secospace_antiddos8000_firmware v500r001c20spc300
huawei nip6600_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60spc200pwe
huawei secospace_antiddos8000_firmware v500r001c20spc500
huawei nip6300_firmware v500r001c30spc100pwe
huawei secospace_antiddos8000_firmware v500r001c00sph303
huawei secospace_usg6600_firmware v500r001c20spc100pwe
huawei nip6800_firmware v500r001c80
huawei nip6600_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc100pwe
huawei ips_firmware v500r001c30spc200
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50spc200pwe
huawei secospace_usg6500_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c50spc100pwe
huawei nip6300_firmware v500r001c20
huawei ngfw_firmware v500r001c20spc100
huawei ips_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c50pwe
huawei nip6600_firmware v500r001c00spc500
huawei usg6000v_firmware v500r001c10spc200
huawei ngfw_firmware v500r002c30
huawei s5700_firmware v200r005c03
huawei ngfw_firmware v500r002c00spc200
huawei secospace_usg6500_firmware v500r005c00
huawei ips_firmware v500r001c00sph508
huawei secospace_usg6300_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c00spc500
huawei nip6600_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c50spc100
huawei nip6600_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc300
huawei nip6600_firmware v500r001c00spc300
huawei ap2000_firmware v200r006c10
huawei ap2000_firmware v200r007c10
huawei ngfw_firmware v500r001c20spc300pwe
huawei secospace_usg6600_firmware v500r001c60spc300
huawei nip6300_firmware v500r001c00spc500
huawei ngfw_firmware v500r001c20spc200pwe
huawei secospace_usg6600_firmware v500r001c00spc090
huawei secospace_usg6600_firmware v500r001c00spc500pwe
huawei secospace_usg6600_firmware v500r001c20spc200pwe
huawei secospace_usg6300_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c00spc500
huawei secospace_usg6300_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c20spc101
huawei secospace_usg6600_firmware v100r001c00spc200
huawei ap2000_firmware v200r008c10
huawei secospace_usg6600_firmware v500r001c30
huawei nip6800_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c00sph303
huawei secospace_antiddos8000_firmware v500r001c20spc600
huawei ips_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c20spc100pwe
huawei secospace_usg6300_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c20spc300pwe
huawei nip6600_firmware v500r001c30spc100pwe
huawei svn5800_firmware v200r003c00spc100
huawei ngfw_firmware v500r002c10pwe
huawei usg6000v_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00spc300
huawei secospace_usg6500_firmware v500r001c00sph508
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r001c30spc100
huawei secospace_usg6600_firmware v500r001c20
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30spc200pwe
huawei usg6000v_firmware v500r001c20spc500
huawei ap2000_firmware v200r006c20
huawei secospace_usg6300_firmware v500r001c20spc100
huawei ngfw_firmware v500r002c10
huawei ap2000_firmware v200r009c00
huawei usg6000v_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc100
huawei secospace_antiddos8000_firmware v500r001c60spc200
huawei ips_firmware v500r001c00spc300
huawei ips_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c20
huawei nip6300_firmware v500r001c20spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc600
huawei nip6300_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c20spc200pwe
huawei nip6300_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c30spc300
huawei espace_u1981_firmware v200r003c50spc700
huawei secospace_usg6500_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c30spc300
huawei secospace_usg6300_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c20spc200b062
huawei usg6000v_firmware v500r005c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc300
huawei secospace_usg6300_firmware v500r001c00spc500
huawei ips_firmware v500r001c20spc200b062
huawei ips_firmware v500r001c30spc100pwe
huawei secospace_usg6500_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c20spc200b062
huawei secospace_usg6600_firmware v500r001c60spc100pwe
huawei usg6000v_firmware v500r001c10spc100
huawei ips_firmware v500r001c30spc200pwe
huawei secospace_antiddos8000_firmware v500r001c00spc500
huawei svn5800-c_firmware v200r003c00spc100
huawei usg6000v_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r001c00spc200
huawei secospace_usg6500_firmware v500r001c30spc100pwe
huawei nip6300_firmware v500r001c30spc100
huawei nip6600_firmware v500r001c00sph303
huawei nip6300_firmware v500r001c50
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v100r001c20spc100
huawei nip6600_firmware v500r001c50pwe
huawei secospace_antiddos8000_firmware v500r001c20spc200
huawei ips_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c50
huawei secospace_usg6500_firmware v500r001c80pwe
huawei secospace_antiddos8000_firmware v500r001c60spc300
huawei secospace_usg6300_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c00sph303
huawei ngfw_firmware v500r001c20spc300b078
huawei nip6600_firmware v500r001c30spc200pwe
huawei secospace_usg6600_firmware v500r005c00spc102
huawei secospace_usg6600_firmware v500r001c30spc200pwe
huawei ips_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c30spc500
huawei ips_firmware v500r001c20spc300pwe
huawei nip6300_firmware v500r001c20spc100pwe
huawei ap2000_firmware v200r008c00
huawei usg6000v_firmware v500r001c20spc600
huawei secospace_usg6600_firmware v500r001c20spc200
huawei secospace_antiddos8000_firmware v500r001c60spc101
huawei nip6600_firmware v500r005c00
huawei usg6000v_firmware v500r003c00
huawei ngfw_firmware v500r002c00spc100pwe
huawei nip6300_firmware v500r001c20spc100
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c20spc200
huawei nip6300_firmware v500r001c00spc300
huawei ips_firmware v500r001c20spc200
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_firmware v500r005c00
huawei nip6600_firmware v500r001c30
huawei ngfw_firmware v500r001c20spc200b062
huawei secospace_usg6500_firmware v500r001c00spc500pwe
huawei ngfw_firmware v500r001c20spc100pwe
huawei ngfw_firmware v500r002c30pwe
huawei secospace_usg6600_firmware v500r001c50spc300
huawei secospace_antiddos8000_firmware v500r001c00
huawei nip6300_firmware v500r001c20spc200
huawei svn5600_firmware v200r003c00spc100
huawei secospace_antiddos8000_firmware v500r001c00spc700
huawei ap2000_firmware v200r007c20
huawei secospace_usg6600_firmware v500r001c50spc200
huawei semg9811_firmware v500r002c30
huawei semg9811_firmware v500r002c20
huawei secospace_usg6500_firmware v500r001c20spc300pwe
huawei ngfw_firmware v500r002c00spc100
huawei semg9811_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c20spc100pwe
huawei nip6300_firmware v500r001c20spc200b062
huawei nip6300_firmware v500r001c50pwe
huawei nip6300_firmware v500r001c30spc200pwe
huawei ngfw_firmware v500r002c00
CVE-2019-5259 MEDIUM

There is an information leakage vulnerability on some Huawei products(AR120-S;AR1200;AR1200-S;AR150;AR150-S;AR160;AR200;AR200-S;AR2200;AR2200-S;AR3200;AR3600). An attacker with low permissions can view some high-privilege information by running specific commands.Successful exploit could cause an information disclosure condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei ar120-s_firmware v200r005c32
huawei ar150_firmware v200r007c00
huawei ar1200-s_firmware v200r009c00
huawei ar150-s_firmware v200r006c10
huawei ar3600_firmware v200r007c00
huawei ar160_firmware v200r005c32
huawei ar200_firmware v200r005c32
huawei ar3600_firmware v200r009c00
huawei ar200_firmware v200r005c20
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei ar3200_firmware v200r009c00
huawei ar2200_firmware v200r005c32
huawei ar3600_firmware v200r006c10
huawei ar2200-s_firmware v200r005c32
huawei ar160_firmware v200r008c50
huawei ar160_firmware v200r005c20
huawei ar150-s_firmware v200r005c32
huawei ar150_firmware v200r006c10
huawei ar150_firmware v200r008c50
huawei ar2200_firmware v200r008c50
huawei ar2200-s_firmware v200r008c50
huawei ar160_firmware v200r006c10
huawei ar200-s_firmware v200r009c00
huawei ar1200-s_firmware v200r007c00
huawei ar1200_firmware v200r009c00
huawei ar2200-s_firmware v200r005c20
huawei ar3200_firmware v200r008c50
huawei ar1200_firmware v200r007c00
huawei ar3200_firmware v200r005c20
huawei ar200_firmware v200r009c00
huawei ar150_firmware v200r009c00
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar150-s_firmware v200r007c00
huawei ar200-s_firmware v200r005c32
huawei ar1200-s_firmware v200r005c32
huawei ar150_firmware v200r005c32
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei ar200-s_firmware v200r006c10
huawei ar200_firmware v200r008c50
huawei ar150-s_firmware v200r005c00
huawei ar200-s_firmware v200r005c20
huawei ar120-s_firmware v200r008c50
huawei ar3200_firmware v200r005c32
huawei ar120-s_firmware v200r010c00
huawei ar3600_firmware v200r008c50
huawei ar1200-s_firmware v200r005c20
huawei ar150-s_firmware v200r008c50
huawei ar150-s_firmware v200r009c00
huawei ar1200_firmware v200r005c20
huawei ar200-s_firmware v200r008c50
huawei ar2200-s_firmware v200r009c00
huawei ar2200-s_firmware v200r007c00
huawei ar1200-s_firmware v200r008c50
huawei ar2200_firmware v200r009c00
huawei ar120-s_firmware v200r009c00
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei ar160_firmware v200r009c00
huawei ar1200_firmware v200r005c32
huawei ar2200_firmware v200r005c20
huawei ar1200_firmware v200r008c50
huawei ar150_firmware v200r005c20
huawei ar1200-s_firmware v200r006c10
huawei ar2200_firmware v200r007c00
CVE-2019-5260 MEDIUM

Huawei smartphones HUAWEI Y9 2019 and Honor View 20 have a denial of service vulnerability. Due to insufficient input validation of specific value when parsing the messages, an attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices to exploit this vulnerability. Successful exploit may cause an infinite loop and the device to reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei y9_2019_firmware 8.2.0.163(c605)
huawei view_20_firmware 9.0.1.170(c432e1r3p1)
huawei y9_2019_firmware 8.2.0.162(c605)
huawei view_20_firmware 9.0.1.170(c185e2r3p1)
huawei view_20_firmware 9.0.1.169(c636e1r4p1)
huawei y9_2019_firmware 8.2.0.160(c185r2p2)
CVE-2019-5263 LOW

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305(MAC) and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtained by brute forcing the password for encrypting the backup.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-307,

Products Affected

Vendor Product Version
huawei hisuite *
huawei hwbackup *
CVE-2019-5264 LOW

There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;Changxiang 7S;P-smart;Changxiang 8 Plus;Y9 2018;Honor 9 Lite;Honor 9i;Mate 9). The software does not properly handle certain information of applications locked by applock in a rare condition. Successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_9_firmware *
huawei y9_2018_firmware *
huawei changxiang_7s_firmware *
huawei honor_9i_firmware *
huawei honor_v10_firmware *
huawei mate_10_pro_firmware *
huawei honor_9_lite_firmware *
huawei changxiang_8_plus_firmware *
huawei mate_10_firmware *
huawei p-smart_firmware *
CVE-2019-5265 MEDIUM

Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an improper access control vulnerability. The function incorrectly controls certain access messages, attackers can simulate a sender to steal P2P network information. Successful exploit may cause information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_firmware 9.1.0.193(c00e190r2p1)
CVE-2019-5266 MEDIUM

Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an insufficient input validation vulnerability. Attackers can exploit this vulnerability by sending crafted packets to the affected device. Successful exploit may cause the function will be disabled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p30_firmware 9.1.0.193(c00e190r2p1)
CVE-2019-5267 LOW

Huawei OceanStor SNS3096 V100R002C01 have an information disclosure vulnerability. Attackers with low privilege can exploit this vulnerability by performing some specific operations. Successful exploit of this vulnerability can cause some information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei oceanstor_sns3096_firmware v100r002c01
CVE-2019-5268 MEDIUM

Some Huawei home routers have an input validation vulnerability. Due to input parameter is not correctly verified, an attacker can exploit this vulnerability by sending special constructed packets to obtain files in the device and upload files to some directories.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 2.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei cd18-10_firmware *
huawei ws6500-10_firmware *
huawei hirouter-cd20-10_firmware *
huawei ws5200-11_firmware 9.0.3.11
huawei ws5106-10_firmware *
huawei cd16-10_firmware *
huawei cd17-10_firmware *
huawei tc5200-10_firmware *
huawei ws5200-10_firmware *
huawei ws5108-10_firmware *
huawei ws6500-11_firmware *
huawei ws5200-11_firmware 10.0.2.3
huawei ws826-10_firmware *
huawei hirouter-cd30-10_firmware *
huawei ws5100-10_firmware *
huawei hirouter-cd30-11_firmware *
huawei ws5102-10_firmware *
huawei ws5280-11_firmware *
huawei ws5280-10_firmware *
huawei hirouter-h1-10_firmware *
huawei cd10-10_firmware *
huawei hirouter-cd21-16_firmware *
huawei hirouter-cd15-10_firmware *
CVE-2019-5269 MEDIUM

Some Huawei home routers have an improper authorization vulnerability. Due to improper authorization of certain programs, an attacker can exploit this vulnerability to execute uploaded malicious files and escalate privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cd18-10_firmware *
huawei ws6500-10_firmware *
huawei hirouter-cd20-10_firmware *
huawei ws5200-11_firmware 9.0.3.11
huawei ws5106-10_firmware *
huawei cd16-10_firmware *
huawei cd17-10_firmware *
huawei tc5200-10_firmware *
huawei ws5200-10_firmware *
huawei ws5108-10_firmware *
huawei ws6500-11_firmware *
huawei ws5200-11_firmware 10.0.2.3
huawei ws826-10_firmware *
huawei hirouter-cd30-10_firmware *
huawei ws5100-10_firmware *
huawei hirouter-cd30-11_firmware *
huawei ws5102-10_firmware *
huawei ws5280-11_firmware *
huawei ws5280-10_firmware *
huawei hirouter-h1-10_firmware *
huawei cd10-10_firmware *
huawei hirouter-cd21-16_firmware *
huawei hirouter-cd15-10_firmware *
CVE-2019-5271 MEDIUM

There is an information leak vulnerability in Huawei smart speaker Myna. When the smart speaker is paired with the cloud through Wi-Fi, the speaker incorrectly processes some data. Attackers can exploit this vulnerability to read and modify specific configurations of speakers through a series of operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 2.8 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei myna_firmware 9.0.1.10(h100sp11c00)
huawei myna_firmware 9.0.1.10(h100sp12c00)
huawei myna_firmware 9.0.1.9(h100sp6c00)
huawei myna_firmware 9.0.1.10(h100sp5c00)
huawei myna_firmware 9.0.1.10(h100sp8c00)
huawei myna_firmware 9.0.1.10(h100sp10c00)
CVE-2019-5272 MEDIUM

USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with high privilege to make malicious modifications without detection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-354,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30
huawei usg9500_firmware v500r001c60
CVE-2019-5273 MEDIUM

USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a large heap buffer overrun error, an attacker may exploit the vulnerability by a malicious certificate, resulting a denial of service on the affected products.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30
huawei usg9500_firmware v500r001c60
CVE-2019-5274 MEDIUM

USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in an infinite loop, an attacker may exploit the vulnerability via a malicious certificate to perform a denial of service attack on the affected products.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30
huawei usg9500_firmware v500r001c60
CVE-2019-5275 MEDIUM

USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a heap buffer overflow when decoding a certificate, an attacker may exploit the vulnerability by a malicious certificate to perform a denial of service attack on the affected products.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30
huawei usg9500_firmware v500r001c60
CVE-2019-5276 MEDIUM

Huawei smart phones with earlier versions than ELLE-AL00B 9.1.0.222(C00E220R2P1) have a buffer overflow vulnerability. An attacker may intercept and tamper with the packet in the local area network (LAN) to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei elle-al00b_firmware *
CVE-2019-5277 MEDIUM

Huawei CloudUSM-EUA V600R006C10;V600R019C00 have an information leak vulnerability. Due to improper configuration, the attacker may cause information leak by successful exploitation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cloudusm-eua_firmware v600r006c10
huawei cloudusm-eua_firmware v600r019c00
CVE-2019-5278 MEDIUM

There is an out-of-bounds read vulnerability in the Advanced Packages feature of the Gauss100 OLTP database in CampusInsight before V100R019C00SPC200. Attackers who gain the specific permission can use this vulnerability by sending elaborate SQL statements to the database. Successful exploit of this vulnerability may cause the database to crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei campusinsight v100r019c00
CVE-2019-5279 MEDIUM

Huawei smart phones Emily-L29C with Versions earlier than 9.1.0.311(C10E2R1P13T8), Versions earlier than 9.1.0.311(C461E2R1P11T8), Versions earlier than 9.1.0.316(C635E2R1P11T8), Versions earlier than 9.1.0.311(C185E2R1P12T8), Versions earlier than 9.1.0.311(C605E2R1P12T8), Versions earlier than 9.1.0.311(C636E7R1P13T8) have an information leakage vulnerability. An attacker tricks the user into installing a malicious application, which can copy specific files to the sdcard, resulting in information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emily-l29c_firmware *
CVE-2019-5280 MEDIUM

The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verification of specific parameters of the TLS server certificate, attackers can perform man-in-the-middle attacks, leading to the affected phones registered abnormally, affecting the availability of IP phones.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
huawei cloudlink_phone_7900_firmware v600r019c10
CVE-2019-5281 LOW

There is an information leak vulnerability in some Huawei phones, versions earlier than Jackman-L21 8.2.0.155(C185R1P2). When a local attacker uses the camera of a smartphone, the attacker can exploit this vulnerability to obtain sensitive information by performing a series of operations.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei y9_2019_firmware *
CVE-2019-5282 MEDIUM

Bastet module of some Huawei smartphones with Versions earlier than Emily-AL00A 9.0.0.182(C00E82R1P21), Versions earlier than Emily-TL00B 9.0.0.182(C01E82R1P21), Versions earlier than Emily-L09C 9.0.0.203(C432E7R1P11), Versions earlier than Emily-L29C 9.0.0.203(C432E7R1P11), Versions earlier than Emily-L29C 9.0.0.202(C185E2R1P12) have a double free vulnerability. An attacker tricks the user into installing a malicious application, which frees on the same memory address twice. Successful exploit could result in malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei emily-tl00b_firmware *
huawei hima-l29ca_firmware *
huawei emily-l29c_firmware *
huawei emily-al00a_firmware *
huawei hima-l09ca_firmware *
huawei hima-l29c_firmware *
huawei emily-l09c_firmware *
CVE-2019-5283 LOW

There is Factory Reset Protection (FRP) bypass security vulnerability in P20 Huawei smart phones versions earlier than Emily-AL00A 9.0.0.167 (C00E81R1P21T8). When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the Talkback mode and can perform some operations to access the setting page. As a result, the FRP function is bypassed.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p20_firmware *
CVE-2019-5284 MEDIUM

There is a DoS vulnerability in RTSP module of Leland-AL00A Huawei smart phones versions earlier than Leland-AL00A 9.1.0.111(C00E111R2P10T8). Remote attackers could trick the user into opening a malformed RTSP media stream to exploit this vulnerability. Successful exploit could cause the affected phone abnormal, leading to a DoS condition. (Vulnerability ID: HWPSIRT-2019-02004)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei leland-al00a_firmware *
CVE-2019-5285 HIGH

Some Huawei S series switches have a DoS vulnerability. An unauthenticated remote attacker can send crafted packets to the affected device to exploit this vulnerability. Due to insufficient verification of the packets, successful exploitation may cause the device reboot and denial of service (DoS) condition. (Vulnerability ID: HWPSIRT-2019-03109)

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s9300_firmware v200r010c00
huawei s9300x_firmware v200r011c10
huawei s1700_firmware v200r013c00
huawei s6300_firmware v200r003c00
huawei s2700_firmware v200r013c00
huawei s6700_firmware v200r005c00
huawei s6300_firmware v200r008c00
huawei s5300_firmware v200r012c00
huawei s6700_firmware v200r008c00
huawei s1700_firmware v200r012c00
huawei s9700_firmware v200r003c00
huawei s2700_firmware v200r011c10
huawei s9700_firmware v200r011c10
huawei s2700_firmware v200r007c00
huawei s2700_firmware v200r006c00
huawei s9700_firmware v200r012c00
huawei s600-e_firmware v200r012c00
huawei s7700_firmware v200r005c00
huawei s5300_firmware v200r005c00
huawei s12700_firmware v200r006c00
huawei s5300_firmware v200r008c00
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r011c10
huawei s5700_firmware v200r006c00
huawei s6300_firmware v200r007c00
huawei s5700_firmware v200r008c00
huawei s5300_firmware v200r013c00
huawei s12700_firmware v200r012c00
huawei s9300_firmware v200r008c10
huawei s2700_firmware v200r010c00
huawei s7900_firmware v200r013c00
huawei s12700_firmware v200r007c00
huawei s1700_firmware v200r011c10
huawei s5700_firmware v200r003c00
huawei s9700_firmware v200r008c00
huawei s9300_firmware v200r012c00
huawei s6300_firmware v200r005c00
huawei s2300_firmware v200r005c00
huawei s7700_firmware v200r008c00
huawei s5300_firmware v200r011c10
huawei s9700_firmware v200r005c00
huawei s12700_firmware v200r011c10
huawei s9700_firmware v200r006c00
huawei s2300_firmware v200r003c00
huawei s7700_firmware v200r006c00
huawei s5700_firmware v200r013c00
huawei s600-e_firmware v200r010c00
huawei s6700_firmware v200r013c00
huawei s2300_firmware v200r013c00
huawei s9300_firmware v200r008c00
huawei s9300x_firmware v200r013c00
huawei s7700_firmware v200r011c10
huawei s6700_firmware v200r012c00
huawei s6700_firmware v200r003c00
huawei s7700_firmware v200r007c00
huawei s9300_firmware v200r013c00
huawei s6700_firmware v200r010c00
huawei s12700_firmware v200r010c00
huawei s2700_firmware v200r005c00
huawei s1700_firmware v200r010c00
huawei s2300_firmware v200r010c00
huawei s5700_firmware v200r012c00
huawei s600-e_firmware v200r011c10
huawei s9700_firmware v200r010c00
huawei s6300_firmware v200r010c00
huawei s9700_firmware v200r007c00
huawei s6700_firmware v200r011c10
huawei s600-e_firmware v200r013c00
huawei s6300_firmware v200r012c00
huawei s6300_firmware v200r013c00
huawei s600-e_firmware v200r008c00
huawei s9300_firmware v200r003c00
huawei s2300_firmware v200r011c10
huawei s12700_firmware v200r005c00
huawei s5700_firmware v200r010c00
huawei s5700_firmware v200r007c00
huawei s6300_firmware v200r011c10
huawei s7900_firmware v200r012c00
huawei s2300_firmware v200r008c00
huawei s12700_firmware v200r013c00
huawei s2700_firmware v200r012c00
huawei s2300_firmware v200r012c00
huawei s5700_firmware v200r005c00
huawei s1700_firmware v200r008c00
huawei s7700_firmware v200r003c00
huawei s7700_firmware v200r013c00
huawei s9300x_firmware v200r012c00
huawei s1700_firmware v200r009c00
huawei s7700_firmware v200r012c00
huawei s7900_firmware v200r011c10
huawei s9300_firmware v200r011c10
huawei s5300_firmware v200r003c00
huawei s2700_firmware v200r008c00
huawei s9700_firmware v200r013c00
huawei s5300_firmware v200r010c00
huawei s9300x_firmware v200r010c00
huawei s7700_firmware v200r010c00
huawei s6700_firmware v200r007c00
CVE-2019-5286 MEDIUM

There is a reflection XSS vulnerability in the HedEx products. Remote attackers send malicious links to users and trick users to click. Successfully exploit cloud allow the attacker to initiate XSS attacks. Affects HedEx Lite versions earlier than V200R006C00SPC007.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei hedex_lite *
CVE-2019-5287 HIGH

P30 smart phones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1) have an integer overflow vulnerability due to insufficient check on specific parameters. An attacker tricks the user into installing a malicious application, obtains the root permission and constructs specific parameters to the camera program to exploit this vulnerability. Successful exploit could cause the program to break down or allow for arbitrary code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2019-5288 HIGH

P30 smart phones with versions earlier than ELLE-AL00B 9.1.0.193(C00E190R2P1) have an integer overflow vulnerability due to insufficient check on specific parameters. An attacker tricks the user into installing a malicious application, obtains the root permission and constructs specific parameters to the camera program to exploit this vulnerability. Successful exploit could cause the program to break down or allow for arbitrary code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2019-5289 MEDIUM

Gauss100 OLTP database in ManageOne with versions of 6.5.0 have an out-of-bounds read vulnerability due to the insufficient checks of the specific packet length. Attackers can construct invalid packets to attack the active and standby communication channels. Successful exploit of this vulnerability could allow the attacker to crash the database on the standby node.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei manageone 6.5.0
CVE-2019-5290 MEDIUM

Huawei S5700 and S6700 have a DoS security vulnerability. Attackers with certain permissions perform specific operations on affected devices. Because the pointer in the program is not processed properly, the vulnerability can be exploited to cause the device to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei s6700_firmware v200r005c00spc500
huawei s5700_firmware v200r008c00
huawei s5700_firmware v200r007c00spc100
huawei s6700_firmware v200r008c00
huawei s6700_firmware v200r005c02
huawei s5700_firmware v200r007c00spc500
huawei s6700_firmware v200r005c01
huawei s5700_firmware v200r006c00spc100
huawei s5700_firmware v200r006c00spc300
huawei s5700_firmware v200r005c02
huawei s5700_firmware v200r005c00spc500
huawei s5700_firmware v200r006c00spc500
huawei s5700_firmware v200r005c03
CVE-2019-5291 MEDIUM

Some Huawei products have an insufficient verification of data authenticity vulnerability. A remote, unauthenticated attacker has to intercept specific packets between two devices, modify the packets, and send the modified packets to the peer device. Due to insufficient verification of some fields in the packets, an attacker may exploit the vulnerability to cause the target device to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei ar150-s_firmware v200r006c10
huawei cloudengine_12800_firmware v200r002c10
huawei ar3600_firmware v200r007c00
huawei srg2300_firmware v200r008c50
huawei ar200_firmware v200r005c20
huawei s6700_firmware v200r010c00spc300
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei srg3300_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei srg1300_firmware v200r008c50
huawei ar160_firmware v200r008c50
huawei ar160_firmware v200r005c20
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar150_firmware v200r008c50
huawei ar2200_firmware v200r008c50
huawei ar2200-s_firmware v200r008c50
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei s6700_firmware v200r010c00spc600
huawei ar1200-s_firmware v200r007c00
huawei ar2200-s_firmware v200r005c20
huawei ar3200_firmware v200r008c50
huawei s6700_firmware v200r008c00
huawei ar1200_firmware v200r007c00
huawei ar3200_firmware v200r005c20
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar150-s_firmware v200r007c00
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei srg2300_firmware v200r005c20
huawei ar200-s_firmware v200r006c10
huawei ar200_firmware v200r008c50
huawei ar200-s_firmware v200r005c20
huawei ar1200_firmware v200r005c00
huawei ar120-s_firmware v200r008c50
huawei srg2300_firmware v200r006c10
huawei ar3600_firmware v200r008c50
huawei ar1200-s_firmware v200r005c20
huawei netengine16ex_firmware v200r005c20
huawei srg1300_firmware v200r005c20
huawei ar150-s_firmware v200r008c50
huawei ar120-s_firmware v200r005c20
huawei ar200-s_firmware v200r008c50
huawei ar2200-s_firmware v200r007c00
huawei cloudengine_12800_firmware v200r002c20
huawei ar1200-s_firmware v200r008c50
huawei srg3300_firmware v200r005c20
huawei srg3300_firmware v200r007c00
huawei ar150-s_firmware v200r005c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei s6700_firmware v200r011c00spc200
huawei srg3300_firmware v200r008c50
huawei ar2200_firmware v200r005c20
huawei ar1200_firmware v200r008c50
huawei ar150_firmware v200r005c20
huawei ar1200-s_firmware v200r006c10
huawei netengine16ex_firmware v200r008c50
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
CVE-2019-5292 LOW

Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions before 9.1.0.217(C00E215R3P1), the versions before 9.1.0.205(C00E97R1P9), the versions before 9.1.0.205(C00E97R2P2) have an information leak vulnerability. Due to improper function error records of some module, an attacker with the access permission may exploit the vulnerability to obtain some information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_8a_firmware *
huawei huawei_y6_firmware *
huawei honor_10_lite_firmware *
CVE-2019-5293 MEDIUM

Some Huawei products have a memory leak vulnerability when handling some messages. A remote attacker with operation privilege could exploit the vulnerability by sending specific messages continuously. Successful exploit may cause some service to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar200-s_firmware v200r005c20
huawei ar150-s_firmware v200r006c10
huawei srg2300_firmware v200r006c10
huawei ar1200-s_firmware v200r005c20
huawei netengine16ex_firmware v200r005c20
huawei srg1300_firmware v200r005c20
huawei ar1200_firmware v200r005c20
huawei ar120-s_firmware v200r005c20
huawei ar200_firmware v200r005c20
huawei ar2200_firmware v200r006c10
huawei srg3300_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar160_firmware v200r005c20
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei srg3300_firmware v200r005c20
huawei ar160_firmware v200r006c10
huawei ar2200-s_firmware v200r005c20
huawei ar150-s_firmware v200r005c20
huawei ar3200_firmware v200r005c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei ar3200_firmware v200r006c10
huawei ar2200_firmware v200r005c20
huawei ar2200-s_firmware v200r006c10
huawei ar150_firmware v200r005c20
huawei ar1200-s_firmware v200r006c10
huawei ar120-s_firmware v200r006c10
huawei srg2300_firmware v200r005c20
huawei ar200-s_firmware v200r006c10
CVE-2019-5294 MEDIUM

There is an out of bound read vulnerability in some Huawei products. A remote, unauthenticated attacker may send a corrupt or crafted message to the affected products. Due to a buffer read overflow error when parsing the message, successful exploit may cause some service to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r006c10
huawei ar200-s_firmware v200r005c20
huawei ar150_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei ar150-s_firmware v200r006c10
huawei srg2300_firmware v200r006c10
huawei ar3600_firmware v200r007c00
huawei ar1200-s_firmware v200r005c20
huawei netengine16ex_firmware v200r005c20
huawei srg1300_firmware v200r005c20
huawei ar1200_firmware v200r005c20
huawei ar120-s_firmware v200r005c20
huawei ar200_firmware v200r005c20
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar2200_firmware v200r006c10
huawei ar2200-s_firmware v200r007c00
huawei srg3300_firmware v200r006c10
huawei ar3600_firmware v200r006c10
huawei ar160_firmware v200r005c20
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei srg3300_firmware v200r005c20
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei srg3300_firmware v200r007c00
huawei ar1200-s_firmware v200r007c00
huawei ar2200-s_firmware v200r005c20
huawei ar1200_firmware v200r007c00
huawei ar150-s_firmware v200r005c20
huawei ar3200_firmware v200r005c20
huawei ar200_firmware v200r006c10
huawei ar1200_firmware v200r006c10
huawei ar3200_firmware v200r006c10
huawei ar2200_firmware v200r005c20
huawei ar2200-s_firmware v200r006c10
huawei ar150-s_firmware v200r007c00
huawei ar150_firmware v200r005c20
huawei ar1200-s_firmware v200r006c10
huawei ar200_firmware v200r007c00
huawei ar120-s_firmware v200r006c10
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei srg2300_firmware v200r005c20
huawei ar200-s_firmware v200r006c10
CVE-2019-5295 MEDIUM

Huawei Honor V10 smartphones versions earlier than Berkeley-AL20 9.0.0.125(C00E125R2P14T8) have an authorization bypass vulnerability. Due to improper authorization implementation logic, attackers can bypass certain authorization scopes of smart phones by performing specific operations. This vulnerability can be exploited to perform operations beyond the scope of authorization.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_view_10_firmware *
CVE-2019-5296 LOW

Mate20 Huawei smartphones versions earlier than HMA-AL00C00B175 have an out-of-bounds read vulnerability. An attacker with a high permission runs some specific commands on the smartphone. Due to insufficient input verification, successful exploit may cause out-of-bounds read of the memory and the system abnormal.

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei mate20_firmware *
CVE-2019-5297 LOW

Emily-L29C Huawei phones versions earlier than 9.0.0.159 (C185E2R1P12T8) have a Factory Reset Protection (FRP) bypass security vulnerability. Before the FRP account is verified and activated during the reset process, the attacker can perform some special operations to bypass the FRP function and obtain the right to use the mobile phone.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emily-l29c_firmware *
CVE-2019-5298 MEDIUM

There is an improper authentication vulnerability in some Huawei AP products before version V200R009C00SPC800. Due to the improper implementation of authentication for the serial port, an attacker could exploit this vulnerability by connecting to the affected products and running a series of commands.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei ap4050dn-e_firmware *
CVE-2019-5299 MEDIUM

Huawei mobile phones Hima-AL00Bhave with Versions earlier than HMA-AL00C00B175 have a signature verification bypass vulnerability. Attackers can induce users to install malicious applications. Due to a defect in the signature verification logic, the malicious applications can invoke specific interface to execute malicious code. A successful exploit may result in the execution of arbitrary code.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,

Products Affected

Vendor Product Version
huawei hima-al00b_firmware *
CVE-2019-5300 MEDIUM

There is a digital signature verification bypass vulnerability in AR1200, AR1200-S, AR150, AR160, AR200, AR2200, AR2200-S, AR3200, SRG1300, SRG2300 and SRG3300 Huawei routers. The vulnerability is due to the affected software improperly verifying digital signatures for the software image in the affected device. A local attacker with high privilege may exploit the vulnerability to bypass integrity checks for software images and install a malicious software image on the affected device.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,

Products Affected

Vendor Product Version
huawei ar2200s_firmware v200r007c00
huawei ar150_firmware v200r007c00
huawei ar1200-s_firmware v200r009c00
huawei ar3200_firmware v200r010c00
huawei ar3200_firmware v200r008c20
huawei srg2300_firmware v200r008c50
huawei ar160_firmware v200r007c00
huawei ar3200_firmware v200r009c00
huawei ar200_firmware v200r010c00
huawei srg1300_firmware v200r008c50
huawei ar150_firmware v200r008c20
huawei ar160_firmware v200r008c50
huawei ar150_firmware v200r008c50
huawei ar2200_firmware v200r008c50
huawei srg2300_firmware v200r007c00
huawei ar1200-s_firmware v200r007c00
huawei ar1200_firmware v200r009c00
huawei ar2200s_firmware v200r010c00
huawei ar3200_firmware v200r008c50
huawei ar1200_firmware v200r007c00
huawei ar160_firmware v200r010c00
huawei ar200_firmware v200r009c00
huawei srg2300_firmware v200r010c00
huawei ar150_firmware v200r009c00
huawei ar150_firmware v200r010c00
huawei ar2200s_firmware v200r008c20
huawei srg2300_firmware v200r009c00
huawei ar3200_firmware v200r007c00
huawei srg3300_firmware v200r009c00
huawei ar1200_firmware v200r010c00
huawei ar200_firmware v200r007c00
huawei ar1200-s_firmware v200r010c00
huawei ar200_firmware v200r008c20
huawei ar200_firmware v200r008c50
huawei srg3300_firmware v200r010c00
huawei srg1300_firmware v200r010c00
huawei ar1200-s_firmware v200r008c50
huawei ar2200_firmware v200r010c00
huawei ar2200_firmware v200r009c00
huawei srg1300_firmware v200r009c00
huawei ar2200s_firmware v200r008c50
huawei srg3300_firmware v200r007c00
huawei ar2200_firmware v200r008c20
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar160_firmware v200r009c00
huawei srg3300_firmware v200r008c50
huawei ar1200_firmware v200r008c20
huawei ar1200_firmware v200r008c50
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei ar2200s_firmware v200r009c00
CVE-2019-5301 MEDIUM

Huawei smart phones Honor V20 with the versions before 9.0.1.161(C00E161R2P2) have an information leak vulnerability. An attacker may trick a user into installing a malicious application. Due to coding error during layer information processing, attackers can exploit this vulnerability to obtain some layer information.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei honor_v20_firmware *
CVE-2019-5302 LOW

There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 1 out of 2 vulnerabilities. Different than CVE-2020-5303. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei honor_v20_firmware *
huawei ever-l29b_firmware *
huawei honor_view_20_firmware *
huawei alp-l09_firmware *
huawei sydneym-l01_firmware *
huawei alp-al00b_firmware *
huawei alp-l29_firmware *
huawei paris-l29b_firmware *
huawei mate_20_pro_firmware *
huawei sydneym-l23_firmware *
huawei honor_20_firmware *
huawei sydney-l21_firmware *
huawei bla-l29c_firmware *
huawei y9_2019_firmware *
huawei sydney-al00_firmware *
huawei p30_pro_firmware *
huawei paris-l21b_firmware *
huawei sydney-l22_firmware *
huawei nova_lite_3_firmware *
huawei yale-l21a_firmware *
huawei cornell-l29a_firmware *
huawei columbia-al10b_firmware *
huawei emily-l09c_firmware *
huawei mate_20_x_firmware *
huawei honor_magic2_firmware *
huawei paris-l21meb_firmware *
huawei p30_firmware *
huawei emily-l29c_firmware *
huawei honor_8x_firmware *
huawei honor_10_lite_firmware *
huawei sydneym-al00_firmware *
huawei charlotte-l29c_firmware *
huawei jackman-l22_firmware *
huawei cornell-al00a_firmware *
huawei mate_20_firmware *
huawei p20_pro_firmware *
huawei sydney-l22br_firmware *
huawei berkeley-l09_firmware *
huawei charlotte-l09c_firmware *
huawei sydneym-l03_firmware *
huawei sydneym-l21_firmware *
huawei p20_firmware *
huawei berkeley-al20_firmware *
huawei sydney-l21br_firmware *
huawei sydneym-l22_firmware *
huawei columbia-l29d_firmware *
huawei mate_20_rs_firmware *
CVE-2019-5303 LOW

There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing the messages, successful exploit may cause device abnormal. This is 2 out of 2 vulnerabilities. Different than CVE-2020-5302. Affected products are: ALP-AL00B: earlier than 9.1.0.333(C00E333R2P1T8) ALP-L09: earlier than 9.1.0.300(C432E4R1P9T8) ALP-L29: earlier than 9.1.0.315(C636E5R1P13T8) BLA-L29C: earlier than 9.1.0.321(C636E4R1P14T8), earlier than 9.1.0.330(C432E6R1P12T8), earlier than 9.1.0.302(C635E4R1P13T8) Berkeley-AL20: earlier than 9.1.0.333(C00E333R2P1T8) Berkeley-L09: earlier than 9.1.0.350(C10E3R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8), earlier than 9.1.0.350(C636E4R1P13T8) Charlotte-L09C: earlier than 9.1.0.311(C185E4R1P11T8), earlier than 9.1.0.345(C432E8R1P11T8) Charlotte-L29C: earlier than 9.1.0.325(C185E4R1P11T8), earlier than 9.1.0.335(C636E3R1P13T8), earlier than 9.1.0.345(C432E8R1P11T8), earlier than 9.1.0.336(C605E3R1P12T8) Columbia-AL10B: earlier than 9.1.0.333(C00E333R1P1T8) Columbia-L29D: earlier than 9.1.0.350(C461E3R1P11T8), earlier than 9.1.0.350(C185E3R1P12T8), earlier than 9.1.0.350(C10E5R1P14T8), earlier than 9.1.0.351(C432E5R1P13T8) Cornell-AL00A: earlier than 9.1.0.333(C00E333R1P1T8) Cornell-L29A: earlier than 9.1.0.328(C185E1R1P9T8), earlier than 9.1.0.328(C432E1R1P9T8), earlier than 9.1.0.330(C461E1R1P9T8), earlier than 9.1.0.328(C636E2R1P12T8) Emily-L09C: earlier than 9.1.0.336(C605E4R1P12T8), earlier than 9.1.0.311(C185E2R1P12T8), earlier than 9.1.0.345(C432E10R1P12T8) Emily-L29C: earlier than 9.1.0.311(C605E2R1P12T8), earlier than 9.1.0.311(C636E7R1P13T8), earlier than 9.1.0.311(C432E7R1P11T8) Ever-L29B: earlier than 9.1.0.311(C185E3R3P1), earlier than 9.1.0.310(C636E3R2P1), earlier than 9.1.0.310(C432E3R1P12) HUAWEI Mate 20: earlier than 9.1.0.131(C00E131R3P1) HUAWEI Mate 20 Pro: earlier than 9.1.0.310(C185E10R2P1) HUAWEI Mate 20 RS: earlier than 9.1.0.135(C786E133R3P1) HUAWEI Mate 20 X: earlier than 9.1.0.135(C00E133R2P1) HUAWEI P20: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P20 Pro: earlier than 9.1.0.333(C00E333R1P1T8) HUAWEI P30: earlier than 9.1.0.193 HUAWEI P30 Pro: earlier than 9.1.0.186(C00E180R2P1) HUAWEI Y9 2019: earlier than 9.1.0.220(C605E3R1P1T8) HUAWEI nova lite 3: earlier than 9.1.0.305(C635E8R2P2) Honor 10 Lite: earlier than 9.1.0.283(C605E8R2P2) Honor 8X: earlier than 9.1.0.221(C461E2R1P1T8) Honor View 20: earlier than 9.1.0.238(C432E1R3P1) Jackman-L22: earlier than 9.1.0.247(C636E2R4P1T8) Paris-L21B: earlier than 9.1.0.331(C432E1R1P2T8) Paris-L21MEB: earlier than 9.1.0.331(C185E4R1P3T8) Paris-L29B: earlier than 9.1.0.331(C636E1R1P3T8) Sydney-AL00: earlier than 9.1.0.212(C00E62R1P7T8) Sydney-L21: earlier than 9.1.0.215(C432E1R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8) Sydney-L21BR: earlier than 9.1.0.213(C185E1R1P2T8) Sydney-L22: earlier than 9.1.0.258(C636E1R1P1T8) Sydney-L22BR: earlier than 9.1.0.258(C636E1R1P1T8) SydneyM-AL00: earlier than 9.1.0.228(C00E78R1P7T8) SydneyM-L01: earlier than 9.1.0.215(C782E2R1P1T8), earlier than 9.1.0.213(C185E1R1P1T8), earlier than 9.1.0.270(C432E3R1P1T8) SydneyM-L03: earlier than 9.1.0.217(C605E1R1P1T8) SydneyM-L21: earlier than 9.1.0.221(C461E1R1P1T8), earlier than 9.1.0.215(C432E4R1P1T8) SydneyM-L22: earlier than 9.1.0.259(C185E1R1P2T8), earlier than 9.1.0.220(C635E1R1P2T8), earlier than 9.1.0.216(C569E1R1P1T8) SydneyM-L23: earlier than 9.1.0.226(C605E2R1P1T8) Yale-L21A: earlier than 9.1.0.154(C432E2R3P2), earlier than 9.1.0.154(C461E2R2P1), earlier than 9.1.0.154(C636E2R2P1) Honor 20: earlier than 9.1.0.152(C00E150R5P1) Honor Magic2: earlier than 10.0.0.187 Honor V20: earlier than 9.1.0.234(C00E234R4P3)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei honor_v20_firmware *
huawei ever-l29b_firmware *
huawei honor_view_20_firmware *
huawei alp-l09_firmware *
huawei sydneym-l01_firmware *
huawei alp-al00b_firmware *
huawei alp-l29_firmware *
huawei paris-l29b_firmware *
huawei mate_20_pro_firmware *
huawei sydneym-l23_firmware *
huawei honor_20_firmware *
huawei sydney-l21_firmware *
huawei bla-l29c_firmware *
huawei y9_2019_firmware *
huawei sydney-al00_firmware *
huawei p30_pro_firmware *
huawei paris-l21b_firmware *
huawei sydney-l22_firmware *
huawei nova_lite_3_firmware *
huawei yale-l21a_firmware *
huawei cornell-l29a_firmware *
huawei columbia-al10b_firmware *
huawei emily-l09c_firmware *
huawei mate_20_x_firmware *
huawei honor_magic2_firmware *
huawei paris-l21meb_firmware *
huawei p30_firmware *
huawei emily-l29c_firmware *
huawei honor_8x_firmware *
huawei honor_10_lite_firmware *
huawei sydneym-al00_firmware *
huawei charlotte-l29c_firmware *
huawei jackman-l22_firmware *
huawei cornell-al00a_firmware *
huawei mate_20_firmware *
huawei p20_pro_firmware *
huawei sydney-l22br_firmware *
huawei berkeley-l09_firmware *
huawei charlotte-l09c_firmware *
huawei sydneym-l03_firmware *
huawei sydneym-l21_firmware *
huawei p20_firmware *
huawei berkeley-al20_firmware *
huawei sydney-l21br_firmware *
huawei sydneym-l22_firmware *
huawei columbia-l29d_firmware *
huawei mate_20_rs_firmware *
CVE-2019-5304 HIGH

Some Huawei products have a buffer error vulnerability. An unauthenticated, remote attacker could send specific MPLS Echo Request messages to the target products. Due to insufficient input validation of some parameters in the messages, successful exploit may cause the device to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei netengine16ex_firmware v200r006c10
huawei ar150_firmware v200r007c00
huawei ar2200-s_firmware v200r008c20
huawei ar150-s_firmware v200r006c10
huawei s6700_firmware v200r005c00
huawei ar200_firmware v200r005c20
huawei ar2200_firmware v200r006c10
huawei secospace_antiddos8000_firmware v500r001c60
huawei ar3600_firmware v200r006c10
huawei ar200_firmware v200r003c01
huawei ar150_firmware v200r008c20
huawei ar160_firmware v200r008c50
huawei ar1200_firmware v200r003c01
huawei ar160_firmware v200r005c20
huawei srg1300_firmware v200r006c10
huawei ar150_firmware v200r006c10
huawei ar150_firmware v200r008c50
huawei ar2200_firmware v200r003c01
huawei ar2200_firmware v200r008c50
huawei ar2200-s_firmware v200r008c50
huawei srg2300_firmware v200r007c00
huawei ar160_firmware v200r006c10
huawei ar2200-s_firmware v200r005c20
huawei s6700_firmware v200r008c00
huawei secospace_usg6300_firmware v500r001c20
huawei ar1200_firmware v200r007c00
huawei ar3200_firmware v200r005c20
huawei netengine16ex_firmware v200r008c20
huawei ar3200_firmware v200r006c10
huawei ar2200-s_firmware v200r006c10
huawei ar3200_firmware v200r007c00
huawei ar150-s_firmware v200r007c00
huawei srg3300_firmware v200r003c01
huawei ar200_firmware v200r007c00
huawei ar200_firmware v200r008c20
huawei ar200-s_firmware v200r005c20
huawei srg1300_firmware v200r003c01
huawei secospace_antiddos8000_firmware v500r005c00
huawei netengine16ex_firmware v200r005c20
huawei ar150-s_firmware v200r008c50
huawei ar1200_firmware v200r005c20
huawei ar200-s_firmware v200r008c50
huawei secospace_usg6500_firmware v500r001c30
huawei s5700_firmware v200r005c02
huawei ar1200-s_firmware v200r008c50
huawei srg3300_firmware v200r005c20
huawei srg3300_firmware v200r008c20
huawei s5700_firmware v200r006c00
huawei s5700_firmware v200r008c00
huawei ips_module_firmware v500r001c30
huawei ar2200_firmware v200r008c20
huawei secospace_usg6300_firmware v500r001c30
huawei s6700_firmware v200r005c02
huawei ar160_firmware v200r008c20
huawei ar1200-s_firmware v200r008c20
huawei ar200_firmware v200r006c10
huawei s6700_firmware v200r005c01
huawei s5700_firmware v200r011c00
huawei ar1200_firmware v200r008c20
huawei ar2200_firmware v200r005c20
huawei ar1200_firmware v200r008c50
huawei ar150-s_firmware v200r008c20
huawei ar1200-s_firmware v200r006c10
huawei ips_module_firmware v500r001c20
huawei netengine16ex_firmware v200r008c50
huawei ar120-s_firmware v200r008c20
huawei ar200-s_firmware v200r007c00
huawei netengine16ex_firmware v200r007c00
huawei srg1300_firmware v200r008c20
huawei s6700_firmware v200r011c00
huawei ar3200_firmware v200r008c20
huawei ngfw_module_firmware v500r001c20
huawei ar3600_firmware v200r007c00
huawei srg2300_firmware v200r008c50
huawei ar120-s_firmware v200r007c00
huawei ar160_firmware v200r007c00
huawei ar3600_firmware v200r008c20
huawei srg3300_firmware v200r006c10
huawei srg1300_firmware v200r008c50
huawei ar150_firmware v200r003c01
huawei ar2200-s_firmware v200r003c01
huawei nip6600_firmware v500r001c20
huawei srg2300_firmware v200r003c01
huawei nip6300_firmware v500r001c30
huawei secospace_antiddos8000_firmware v500r001c20
huawei ar1200-s_firmware v200r007c00
huawei ar3200_firmware v200r008c50
huawei s6700_firmware v200r010c00
huawei nip6300_firmware v500r001c20
huawei s5700_firmware v200r005c03
huawei ar120-s_firmware v200r006c10
huawei srg2300_firmware v200r005c20
huawei ar200-s_firmware v200r006c10
huawei ar200_firmware v200r008c50
huawei ar200-s_firmware v200r003c01
huawei ar120-s_firmware v200r008c50
huawei ar1200-s_firmware v200r003c01
huawei srg2300_firmware v200r006c10
huawei secospace_usg6500_firmware v500r001c20
huawei ar3600_firmware v200r008c50
huawei ngfw_module_firmware v500r002c00
huawei ar1200-s_firmware v200r005c20
huawei srg1300_firmware v200r005c20
huawei nip6600_firmware v500r001c30
huawei ar150-s_firmware v200r003c01
huawei ar200-s_firmware v200r008c20
huawei s5700_firmware v200r010c00
huawei s5700_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c30
huawei srg3300_firmware v200r007c00
huawei ar150-s_firmware v200r005c20
huawei s5700_firmware v200r005c00
huawei ar1200_firmware v200r006c10
huawei srg3300_firmware v200r008c50
huawei srg2300_firmware v200r008c20
huawei ar150_firmware v200r005c20
huawei ar3200_firmware v200r003c01
huawei ar2200_firmware v200r007c00
huawei srg1300_firmware v200r007c00
huawei secospace_usg6600_firmware v500r001c20
CVE-2019-5305 HIGH

The image processing module of some Huawei Mate 10 smartphones versions before ALP-L29 9.0.0.159(C185) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can call special API, which could trigger double free and cause a system crash.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei mate_10_firmware *
CVE-2019-5306 LOW

There is a Factory Reset Protection (FRP) bypass security vulnerability in P20 Huawei smart phones versions before Emily-AL00A 9.0.0.167(C00E81R1P21T8). When re-configuring the mobile phone using the FRP function, an attacker can delete the activation lock after a series of operations. As a result, the FRP function is bypassed and the attacker gains access to the smartphone.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p20_firmware *
CVE-2019-5307 MEDIUM

Some Huawei 4G LTE devices, P30 versions before ELE-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1) and P30 Pro versions before VOG-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1), are exposed to a message replay vulnerability. For the sake of better compatibility, these devices implement a less strict check on the NAS message sequence number (SN), specifically NAS COUNT. As a result, an attacker can construct a rogue base station and replay the GUTI reallocation command message in certain conditions to tamper with GUTIs, or replay the Identity request message to obtain IMSIs. (Vulnerability ID: HWPSIRT-2019-04107)

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-294,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2019-5308 LOW

Mate 20 RS smartphones with versions earlier than 9.1.0.135(C786E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation in ADB mode, successful exploit could allow the attacker to switch to third desktop after a series of operation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_20_rs_firmware *
CVE-2019-5309 LOW

Honor play smartphones with versions earlier than 9.1.0.333(C00E333R1P1T8) have an information disclosure vulnerability in certain Huawei . An attacker could view certain information after a series of operation without unlock the screen lock. Successful exploit could cause an information disclosure condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-307,

Products Affected

Vendor Product Version
huawei honor_play_firmware *
CVE-2019-9506 MEDIUM

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 2.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,CWE-327,

Products Affected

Vendor Product Version
huawei leland-l42c_firmware -
huawei columbia-tl00d_firmware *
huawei figo-l31_firmware *
huawei atomu-l41_firmware *
huawei florida-l21_firmware *
huawei imanager_neteco_firmware -
redhat enterprise_linux_server_aus 7.3
huawei honor_20_firmware *
huawei barca-al00_firmware *
huawei yale-l21a_firmware -
huawei p30_firmware -
huawei emily-l29c_firmware 8.1.0.156(c605)
redhat enterprise_linux_for_real_time 7
huawei dubai-al00a_firmware *
huawei honor_view_10_firmware -
huawei sydneym-al00_firmware -
huawei lelandp-l22c_firmware -
google android -
redhat enterprise_linux_server_aus 7.7
redhat enterprise_linux_eus 8.2
huawei berkeley-tl10_firmware *
redhat enterprise_linux_tus 7.6
huawei imanager_neteco_6000_firmware -
huawei madrid-al00a_firmware -
redhat virtualization_host_eus 4.2
huawei madrid-tl00a_firmware -
huawei cornell-al00i_firmware *
huawei leland-tl10c_firmware -
huawei florida-tl10b_firmware *
huawei cornell-al00a_firmware *
huawei yale-l61c_firmware -
redhat enterprise_linux_server 7.0
redhat enterprise_linux_server_aus 8.4
redhat enterprise_linux_eus 7.6
huawei princeton-tl10c_firmware -
redhat enterprise_linux_for_real_time 8
huawei nova_3_firmware -
huawei honor_8a_firmware -
huawei sydney-tl00_firmware -
redhat enterprise_linux_aus 7.5
huawei lelandp-al10d_firmware -
redhat enterprise_linux_server_aus 7.6
huawei ares-al10d_firmware *
huawei leland-l32c_firmware -
huawei princeton-al10b_firmware -
huawei honor_8x_firmware -
huawei cairogo-l22_firmware *
huawei figo-l23_firmware *
huawei paris-l29b_firmware -
huawei p20_pro_firmware -
huawei yalep-al10b_firmware -
redhat mrg_realtime 2.0
canonical ubuntu_linux 18.04
opensuse leap 15.0
redhat enterprise_linux_server_aus 8.2
huawei sydney-l21br_firmware -
huawei cornell-al10ind_firmware *
huawei atomu-l33_firmware *
huawei paris-l21meb_firmware -
huawei hima-l29c_firmware -
huawei london-al40ind_firmware -
huawei figo-tl10b_firmware *
redhat enterprise_linux_server_tus 7.4
huawei columbia-al10i_firmware *
huawei tony-al00b_firmware -
opensuse leap 15.1
redhat enterprise_linux_server_tus 8.2
redhat enterprise_linux_eus 8.4
huawei emily-l29c_firmware *
huawei y6_prime_2018_firmware -
huawei florida-l22_firmware *
redhat enterprise_linux_for_real_time_for_nfv_eus 8.4
canonical ubuntu_linux 16.04
huawei p20_firmware -
huawei yale-al00a_firmware -
huawei johnson-tl00d_firmware -
redhat enterprise_linux_for_real_time_eus 8.4
huawei sydneym-l03_firmware -
huawei florida-l23_firmware *
huawei mate_20_pro_firmware -
huawei sydneym-l21_firmware -
huawei honor_view_20_firmware -
huawei sydneym-l22_firmware -
redhat enterprise_linux_for_real_time_eus 8.2
huawei y5_2018_firmware -
huawei tony-tl00b_firmware -
apple tvos 12.4
huawei ever-l29b_firmware *
huawei florida-al20b_firmware *
redhat enterprise_linux_server_tus 7.3
apple iphone_os 12.4
huawei nova_4_firmware -
huawei lelandp-al00c_firmware -
huawei atomu-l42_firmware *
huawei princeton-al10d_firmware -
canonical ubuntu_linux 19.04
huawei ares-al00b_firmware *
huawei bla-l29c_firmware *
huawei potter-al00c_firmware -
huawei sydney-al00_firmware -
redhat enterprise_linux 8.0
redhat enterprise_linux_eus 8.1
huawei bla-tl00b_firmware *
huawei ares-tl00c_firmware *
redhat enterprise_linux_eus 7.7
huawei cornell-l29a_firmware *
huawei laya-al00ep_firmware -
huawei harry-tl00c_firmware -
huawei columbia-al10b_firmware *
huawei figo-l31_firmware 8.0.0.122d(c652)
huawei y5_lite_firmware -
huawei p_smart_firmware -
huawei sydney-l22br_firmware -
huawei bla-al00b_firmware *
huawei paris-al00ic_firmware -
huawei charlotte-l29c_firmware *
huawei sydneym-l01_firmware -
huawei leland-l31a_firmware -
huawei y7_2019_firmware -
huawei neo-al00d_firmware -
huawei potter-al10a_firmware -
huawei leland-l32a_firmware -
huawei dura-tl00a_firmware *
redhat enterprise_linux_for_real_time_for_nfv_eus 8.2
redhat enterprise_linux_server_tus 7.6
huawei katyusha-al00a_firmware -
huawei dura-al00a_firmware *
huawei columbia-l29d_firmware *
huawei y6_2019_firmware -
huawei sydneym-l23_firmware -
huawei cornell-al00ind_firmware *
huawei jakarta-al00a_firmware -
huawei alp-al00b_firmware *
huawei leland-l42a_firmware -
huawei y9_2019_firmware -
redhat enterprise_linux_server_tus 7.7
huawei nova_5i_pro_firmware -
huawei yale-al50a_firmware -
huawei nova_lite_3_firmware -
huawei y6_pro_2019_firmware -
huawei honor_10_lite_firmware -
huawei paris-l21b_firmware -
redhat enterprise_linux_for_real_time_for_nfv 7
huawei sydney-l22_firmware -
huawei yale-tl00b_firmware -
huawei asoka-al00ax_firmware *
debian debian_linux 8.0
huawei mate_20_firmware -
huawei mate_20_x_firmware -
apple watchos 5.3
huawei johnson-tl00f_firmware -
apple mac_os_x 10.12.6
huawei sydney-l21_firmware -
apple mac_os_x 10.14.5
huawei leland-tl10b_firmware -
redhat enterprise_linux_server_aus 7.4
huawei harry-al00c_firmware -
huawei harry-al10b_firmware -
huawei honor_20_pro_firmware *
redhat enterprise_linux_server_tus 8.4
huawei p30_pro_firmware -
huawei lelandp-al10b_firmware -
apple mac_os_x 10.13.6
huawei cornell-tl10b_firmware *
huawei leland-l21a_firmware -
huawei lelandp-l22a_firmware -
huawei berkeley-l09_firmware *
redhat enterprise_linux_for_real_time_for_nfv 8
huawei nova_5_firmware -
huawei berkeley-al20_firmware *
huawei lelandp-l22d_firmware -
huawei p_smart_2019_firmware -
CVE-2020-0022 HIGH

In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Android ID: A-143894715

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-682,CWE-682,

Products Affected

Vendor Product Version
huawei honor_view_20_firmware *
google android 8.1
huawei mate_20_pro_firmware *
huawei mate_30_firmware *
huawei mate_30_pro_firmware *
huawei y9_2019_firmware *
huawei mate_30_pro_5g_firmware *
huawei p_smart_firmware *
huawei p30_pro_firmware *
huawei honor_8a_firmware *
huawei nova_lite_3_firmware *
huawei y6_pro_2019_firmware *
huawei mate_20_x_firmware *
google android 9.0
huawei p30_firmware *
huawei honor_8x_firmware *
huawei nova_3_firmware *
google android 8.0
huawei p_smart_2019_firmware *
huawei mate_30_5g_firmware *
huawei mate_20_firmware *
huawei p20_pro_firmware *
huawei y6_2019_firmware *
huawei p20_firmware *
google android 10.0
CVE-2020-0069 HIGH

In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147882143References: M-ALPS04356754

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,CWE-787,

Products Affected

Vendor Product Version
huawei honor_view_20_firmware *
huawei columbia-tl00b_firmware *
huawei columbia-tl00d_firmware *
huawei paris-l29b_firmware *
huawei yalep-al10b_firmware *
huawei princeton-al10b_firmware *
huawei tony-tl00b_firmware *
huawei sydney-al00_firmware *
huawei honor_8a_firmware *
huawei jakarta-al00a_firmware *
huawei yale-l21a_firmware *
google android -
huawei columbia-al10b_firmware *
huawei katyusha-al10a_firmware *
huawei honor_20_pro_firmware *
huawei tony-al00b_firmware *
huawei nova_4_firmware *
huawei nova_3_firmware *
huawei cornell-tl10b_firmware *
huawei sydneym-al00_firmware *
huawei katyusha-al00a_firmware *
huawei cornell-al00a_firmware *
huawei yale-al00a_firmware *
huawei y6_2019_firmware *
huawei berkeley-l09_firmware *
huawei madrid-al00a_firmware *
huawei sydney-tl00_firmware *
huawei dura-al00a_firmware *
huawei columbia-l29d_firmware *
CVE-2020-12695 HIGH

The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subscription request with a delivery URL on a different network segment than the fully qualified event-subscription URL, aka the CallStranger issue.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:H 2.2 4.7

CVSS 2.0

Severity: HIGH

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei hg532e -
hp 5030_m2u92b -
cisco wap351 -
epson xp-2101 -
hp envy_120_cz022b -
hp envy_4502_a9t85a -
hp envy_4522_f0v67a -
hp deskjet_ink_advantage_4515 -
hp envy_pro_6420_5se45b -
hp hp_officejet_4652_f1j02a -
hp hp_envy_4527_j6u61b -
hp officejet_4654_f1j06b -
hp envy_4520_f0v63a -
hp hp_officejet_4655_f1j00a -
hp 5030_z4a70a -
hp envy_5000_m2u85a -
epson xp-630 -
hp officejet_4652_k9v84b -
hp envy_4528_k9t08b -
hp hp_officejet_4657_v6d29b -
hp deskjet_ink_advantage_3548_a9t81b -
hp hp_officejet_4655_k9v79a -
hp envy_114_cq812a -
hp officejet_4658_v6d30b -
hp envy_6020_7cz37a -
hp envy_photo_7120_z3m41d -
hp envy_5545_g0v50a -
hp envy_100_cn518a -
hp envy_110_cq812c -
hp officejet_4650_e6g87a -
broadcom adsl -
hp envy_7644_e4w46a -
hp envy_photo_7155_z3m52a -
hp officejet_4655_k9v79a -
hp envy_5000_m2u91a -
hp envy_5646_f8b05a -
hp envy_photo_7822_y0g42d -
hp envy_100_cn519b -
epson xp-330 -
hp envy_5541_k7g89a -
epson m571t -
hp envy_100_cn517a -
zyxel amg1202-t10b -
hp envy_4503_e6g71b -
dlink dvg-n5412sp -
hp envy_4509_d3p94b -
hp hp_envy_4521_k9t10b -
hp envy_6055_5se16a -
hp envy_5543_n9u88a -
hp envy_photo_7800_y0g42d -
hp envy_5540_k7c85a -
hp envy_photo_6200_y0k15a -
ui unifi_controller -
hp envy_4512_k9h49a -
hp envy_5534 -
hp envy_5539 -
hp envy_photo_6220_k7g21b -
hp hp_officejet_4650_e6g87a -
epson xp-8600 -
hp envy_5664_f8b08a -
hp officejet_4652_f1j05b -
canonical ubuntu_linux 20.04
epson xp-4105 -
hp envy_110_cq809a -
hp envy_photo_6200_k7g18a -
hp hp_envy_4523_j6u60b -
hp officejet_4652_f1j02a -
hp envy_pro_6455_5se45a -
hp envy_5544_k7c89a -
hp hp_deskjet_ink_advantage_4678_f1h99b -
hp officejet_4655_k9v82b -
hp deskjet_ink_advantage_3545_a9t81a -
hp envy_photo_6222_y0k13d -
hp envy_4527_j6u61b -
hp envy_5000_m2u94b -
hp envy_7640 -
hp envy_5540_g0v51a -
epson xp-2105 -
hp hp_envy_4520_f0v69a -
hp deskjet_ink_advantage_4676_f1h98a -
hp envy_4504_c8d04a -
hp envy_5540_g0v53a -
epson xp-970 -
hp envy_photo_7164_k7g99a -
hp envy_4524_f0v72b -
hp deskjet_ink_advantage_3546_a9t82a -
hp envy_6020_5se17a -
hp envy_110_cq809d -
hp envy_4526_k9t05b -
hp envy_4509_d3p94a -
hp envy_photo_6200_k7s21b -
hp envy_5535 -
hp envy_5531 -
hp envy_photo_6200_y0k13d_ -
epson xp-620 -
epson ew-m970a3t -
hp deskjet_ink_advantage_4678_f1h99b -
hp envy_5530 -
epson xp-320 -
epson xp-241 -
hp envy_4500_a9t89a -
hp envy_pro_6420_6wd14a -
hp deskjet_ink_advantage_4535_f0v64a -
hp hp_envy_4524_f0v71b -
hp envy_110_cq809c -
hp envy_photo_7100_k7g93a -
hp hp_envy_4520_f0v63a -
hp hp_deskjet_ink_advantage_4675_f1h97a -
hp envy_photo_6200_k7g26b -
huawei hg255s -
hp deskjet_ink_advantage_4538_f0v66b -
zte zxv10_w300 -
hp hp_officejet_4652_k9v84b -
hp envy_5000_z4a54a -
epson xp-440 -
hp deskjet_ink_advantage_4675_f1h97c -
hp envy_4500_a9t80b -
hp envy_5540_f2e72a -
hp envy_photo_6234_k7s21b -
hp hp_deskjet_ink_advantage_4675_f1h97b -
hp envy_4511_k9h50a -
hp envy_4520_f0v63b -
microsoft windows_10 -
hp envy_100_cn517b -
hp hp_deskjet_ink_advantage_4535_f0v64b -
hp hp_envy_4524_f0v72b -
hp envy_110_cq809b -
hp envy_photo_7800_y0g52b -
hp hp_deskjet_ink_advantage_4538_f0v66b -
hp hp_envy_4520_e6g67b -
hp hp_officejet_4655_k9v82b -
epson xp-4100 -
hp envy_5643_b9s63a -
dell b1165nfw -
fedoraproject fedora 31
hp envy_100_cn519a -
hp envy_pro_6420_6wd16a -
hp officejet_4656_k9v81b -
hp deskjet_ink_advantage_3456_a9t84c -
hp envy_5000_z4a74a -
nec wr8165n -
cisco wap150 -
epson xp-100 -
hp hp_envy_4526_k9t05b -
fedoraproject fedora 32
hp envy_5536 -
hp hp_deskjet_ink_advantage_4535_f0v64a -
hp hp_deskjet_ink_advantage_4675_f1h97c -
hp hp_envy_4520_f0v63b -
hp envy_114_cq811b -
hp envy_6540_b9s59a -
hp hp_deskjet_ink_advantage_4536_f0v65a -
hp envy_photo_7800_k7s00a -
hp envy_6020_6wd35a -
hp hp_envy_4511_k9h50a -
hp envy_4520_e6g67a -
hp officejet_4650_f1h96b -
w1.fi hostapd *
hp deskjet_ink_advantage_3545_a9t81c -
hp hp_officejet_4654_f1j07b -
hp envy_4508_e6g72b -
epson ep-101 -
debian debian_linux 9.0
hp deskjet_ink_advantage_4518 -
hp hp_officejet_4652_f1j05b -
hp deskjet_ink_advantage_4535_f0v64b -
hp envy_5542_k7c88a -
hp officejet_4655_f1j00a -
hp envy_photo_7800_k7r96a -
hp envy_photo_7100_z3m52a -
hp hp_deskjet_ink_advantage_4676_f1h98a -
asus rt-n11 -
hp envy_photo_6222_y0k14d -
hp envy_5642_b9s64a -
tp-link archer_c50 -
hp hp_officejet_4654_f1j06b -
hp envy_5640_b9s56a -
hp envy_4500_a9t80a -
zyxel vmg8324-b10a -
hp envy_5544_k7c93a -
hp envy_4520_e6g67b -
hp deskjet_ink_advantage_3545_a9t83b -
hp envy_photo_6232_k7g26b -
hp hp_officejet_4658_v6d30b -
epson xp-702 -
hp envy_photo_7100_3xd89a -
epson xp-960 -
hp envy_4502_a9t87b -
ruckussecurity zonedirector_1200 -
hp 5660_f8b04a -
hp envy_photo_7100_k7g99a -
canon selphy_cp1200 -
hp envy_photo_7830_y0g50b -
hp deskjet_ink_advantage_5575_g0v48c -
hp envy_111_cq810a -
hp envy_photo_6220_k7g20d -
cisco wap131 -
hp envy_4524_k9t01a -
hp envy_photo_6252_k7g22a -
hp envy_5000_m2u85b -
debian debian_linux 10.0
hp hp_envy_4522_f0v67a -
hp envy_4513_k9h51a -
hp deskjet_ink_advantage_4675_f1h97a -
microsoft xbox_one 10.0.19041.2494
hp envy_5020_m2u91b -
hp deskjet_ink_advantage_4536_f0v65a -
hp envy_5540_g0v47a -
hp hp_envy_4513_k9h51a -
hp envy_4516_k9h52a -
hp hp_officejet_4656_k9v81b -
hp envy_100_cn517c -
hp officejet_4657_v6d29b -
hp hp_envy_4528_k9t08b -
hp hp_officejet_4650_f1h96b -
hp envy_5665_f8b06a -
hp deskjet_ink_advantage_4535_f0v64c -
hp envy_photo_6230_k7g25b -
hp envy_4507_e6g70b -
hp envy_4501_c8d05a -
hp envy_photo_7822_y0g43d -
hp envy_6020_5se16b -
hp envy_4524_f0v71b -
hp envy_photo_7800_k7s10d -
hp hp_envy_4524_k9t01a -
hp envy_120_cz022c -
hp envy_5546_k7c90a -
hp envy_5548_k7g87a -
hp 5034_z4a74a -
hp envy_5540_g0v52a -
hp deskjet_ink_advantage_5575_g0v48b -
hp envy_4505_a9t86a -
hp envy_pro_6452_5se47a -
hp envy_7645_e4w44a -
hp hp_envy_4516_k9h52a -
hp envy_6052_5se18a -
netgear wnhde111 -
hp envy_4500_d3p93a -
hp officejet_4650_f1h96a -
hp envy_4525_k9t09b -
hp deskjet_ink_advantage_4675_f1h97b -
hp envy_5640_b9s58a -
hp envy_114_cq811a -
hp envy_5532 -
hp envy_4504_a9t88b -
hp envy_5547_j6u64a -
hp envy_photo_7100_z3m37a -
hp hp_officejet_4650_f1h96a -
hp envy_5000_m2u91a *
hp envy_pro_6420_5se46a -
hp hp_envy_4525_k9t09b -
epson xp-8500 -
hp envy_120_cz022a -
hp hp_envy_4520_e6g67a -
hp hp_envy_4512_k9h49a -
hp envy_4520_f0v69a -
hp envy_4521_k9t10b -
epson xp-340 -
hp envy_5644_b9s65a -
hp 5020_z4a69a -
hp officejet_4654_f1j07b -
hp envy_4523_j6u60b -
hp hp_deskjet_ink_advantage_4535_f0v64c -
CVE-2020-1785 HIGH

Mate 10 Pro;Honor V10;Honor 10;Nova 4 smartphones have a denial of service vulnerability. The system does not properly check the status of certain module during certain operations, an attacker should trick the user into installing a malicious application, successful exploit could cause reboot of the smartphone.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei nova_4_firmware *
huawei honor_10_firmware *
huawei honor_v10_firmware *
huawei mate_10_pro_firmware *
CVE-2020-1786 LOW

HUAWEI Mate 20 Pro smartphones versions earlier than 10.0.0.175(C00E69R3P8) have an improper authentication vulnerability. The software does not sufficiently validate the name of apk file in a special condition which could allow an attacker to forge a crafted application as a normal one. Successful exploit could allow the attacker to bypass digital balance function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_20_pro_firmware *
CVE-2020-1787 HIGH

HUAWEI Mate 20 smartphones versions earlier than 9.1.0.139(C00E133R3P1) have an improper authentication vulnerability. The system has a logic error under certain scenario, successful exploit could allow the attacker who gains the privilege of guest user to access to the host user's desktop in an instant, without unlocking the screen lock of the host user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 0.7 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-1788 MEDIUM

Honor V30 smartphones with versions earlier than 10.0.1.135(C00E130R4P1) have an improper authentication vulnerability. Certain applications do not properly validate the identity of another application who would call its interface. An attacker could trick the user into installing a malicious application. Successful exploit could allow unauthorized actions leading to information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_v30_firmware *
CVE-2020-1789 MEDIUM

Huawei OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X products with version 1.0.1.21(SP3) have an insufficient authentication vulnerability. The software does not require a strong credential when the user trying to do certain operations. Successful exploit could allow an attacker to pass the authentication and do certain operations by a weak credential.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei osca-550x_firmware 1.0.1.21(sp3)
huawei osca-550_firmware 1.0.1.21(sp3)
huawei osca-550ax_firmware 1.0.1.21(sp3)
huawei osca-550a_firmware 1.0.1.21(sp3)
CVE-2020-1790 MEDIUM

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. The software constructs part of a command using external input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei gaussdb_200 6.5.1
CVE-2020-1791 LOW

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system has a logic judging error under certain scenario, successful exploit could allow the attacker to switch to third desktop after a series of operation in ADB mode.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-1792 HIGH

Honor V10 smartphones with versions earlier than BKL-AL20 10.0.0.156(C00E156R2P4) and versions earlier than BKL-L09 10.0.0.146(C432E4R1P4) have an out of bounds write vulnerability. The software writes data past the end of the intended buffer because of insufficient validation of certain parameter when initializing certain driver program. An attacker could trick the user into installing a malicious application, successful exploit could cause the device to reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei honor_v10_firmware *
CVE-2020-1793 LOW

There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to gain certain data of the application which is locked. Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei mate_30_pro_firmware *
CVE-2020-1794 LOW

There is an improper authentication vulnerability in several smartphones. The applock does not perform a sufficient authentication in certain scenarios, successful exploit could allow the attacker to gain certain data of the application which is locked. Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei mate_30_pro_firmware *
CVE-2020-1795 LOW

There is a logic error vulnerability in several smartphones. The software does not properly restrict certain operation when the Digital Balance function is on. Successful exploit could allow the attacker to bypass the Digital Balance limit after a series of operations.Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei mate_30_pro_firmware *
CVE-2020-1796 MEDIUM

There is an improper authorization vulnerability in several smartphones. The software incorrectly performs an authorization to certain user, successful exploit could allow a low privilege user to do certain operation which the user are supposed not to do.Affected product versions include:HUAWEI Mate 20 versions Versions earlier than 10.0.0.188(C00E74R3P8);HUAWEI Mate 30 Pro versions Versions earlier than 10.0.0.203(C00E202R7P2).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 0.7 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei mate_30_pro_firmware *
CVE-2020-1797 LOW

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.185(C00E74R3P8) have an improper authorization vulnerability. The system does not properly restrict certain operation in ADB mode, successful exploit could allow certain user break the limit of digital balance function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-1798 LOW

HUAWEI P30 smartphones with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. A logic error occurs when handling NFC work, an attacker should establish a NFC connection to the target phone, and then do a series of operations on the target phone. Successful exploit could allow a guest user do certain operation which is beyond the guest user's privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-1799 MEDIUM

E6878-370 with versions of 10.0.3.1(H557SP27C233), 10.0.3.1(H563SP1C00), 10.0.3.1(H563SP1C233) has a use after free vulnerability. The software references memory after it has been freed in certain scenario, the attacker does a series of crafted operations through web portal, successful exploit could cause a use after free condition which may lead to malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 1.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei e6878-370_firmware 10.0.3.1(h557sp27c233)
huawei e6878-370_firmware 10.0.3.1(h563sp1c233)
huawei e6878-370_firmware 10.0.3.1(h563sp1c00)
CVE-2020-1800 MEDIUM

HUAWEI smartphones P30 with versions earlier than 10.0.0.185(C00E85R1P11) have an improper access control vulnerability. The software incorrectly restricts access to a function interface from an unauthorized actor, the attacker tricks the user into installing a crafted application, successful exploit could allow the attacker do certain unauthenticated operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-1801 MEDIUM

There is an improper authentication vulnerability in several smartphones. Certain function interface in the system does not sufficiently validate the caller's identity in certain share scenario, successful exploit could cause information disclosure. Affected product versions include:Mate 30 Pro versions Versions earlier than 10.0.0.205(C00E202R7P2);Mate 30 versions Versions earlier than 10.0.0.205(C00E201R7P2).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
huawei mate_30_pro_firmware *
CVE-2020-1802 LOW

There is an insufficient integrity validation vulnerability in several products. The device does not sufficiently validate the integrity of certain file in certain loading processes, successful exploit could allow the attacker to load a crafted file to the device through USB.Affected product versions include:OSCA-550 versions 1.0.1.23(SP2);OSCA-550A versions 1.0.1.23(SP2);OSCA-550AX versions 1.0.1.23(SP2);OSCA-550X versions 1.0.1.23(SP2).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-354,

Products Affected

Vendor Product Version
huawei osca-550_firmware 1.0.1.23(sp2)
huawei osca-550ax_firmware 1.0.1.23(sp2)
huawei osca-550a_firmware 1.0.1.23(sp2)
huawei osca-550x_firmware 1.0.1.23(sp2)
CVE-2020-1803 LOW

Huawei smartphones Honor V20 with versions earlier than 10.0.0.179(C636E3R4P3),versions earlier than 10.0.0.180(C185E3R3P3),versions earlier than 10.0.0.180(C432E10R3P4) have an information disclosure vulnerability. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_v20_firmware *
CVE-2020-1804 MEDIUM

Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters received, that would lead to several bytes out of bound read. Successful exploit may cause information disclosure or service abnormal. This is 1 out of 3 out of bounds vulnerabilities found. Different than CVE-2020-1805 and CVE-2020-1806.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei honor_v10_firmware *
CVE-2020-1805 MEDIUM

Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters received, that would lead to several bytes out of bound read. Successful exploit may cause information disclosure or service abnormal. This is 2 out of 3 out of bounds vulnerabilities found. Different than CVE-2020-1804 and CVE-2020-1806.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei honor_v10_firmware *
CVE-2020-1806 MEDIUM

Huawei Honor V10 smartphones with versions earlier than 10.0.0.156(C00E156R2P4) has three out of bounds vulnerabilities. Certain driver program does not sufficiently validate certain parameters received, that would lead to several bytes out of bound read. Successful exploit may cause information disclosure or service abnormal. This is 3 out of 3 out of bounds vulnerabilities found. Different than CVE-2020-1804 and CVE-2020-1805.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei honor_v10_firmware *
CVE-2020-1807 LOW

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.188(C00E74R3P8) have an improper authorization vulnerability. The software does not properly restrict certain user's modification of certain configuration file, successful exploit could allow the attacker to bypass app lock after a series of operation in ADB mode.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.5 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 0.9 2.5

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-1808 MEDIUM

Honor 20;HONOR 20 PRO;Honor Magic2;HUAWEI Mate 20 X;HUAWEI P30;HUAWEI P30 Pro;Honor View 20 smartphones with versions earlier than 10.0.0.187(C00E60R4P11); versions earlier than 10.0.0.187(C00E60R4P11); versions earlier than 10.0.0.176(C00E60R2P11);9.1.0.135(C00E133R2P1); versions earlier than 10.1.0.123(C431E22R3P5), versions earlier than 10.1.0.126(C636E5R3P4), versions earlier than 10.1.0.160(C00E160R2P11); versions earlier than 10.1.0.126(C185E8R5P1), versions earlier than 10.1.0.126(C636E9R2P4), versions earlier than 10.1.0.160(C00E160R2P8); versions earlier than 10.0.0.179(C636E3R4P3), versions earlier than 10.0.0.180(C185E3R3P3), versions earlier than 10.0.0.180(C432E10R3P4), versions earlier than 10.0.0.181(C675E5R1P2) have an out of bound read vulnerability. The software reads data past the end of the intended buffer. The attacker tricks the user into installing a crafted application, successful exploit may cause information disclosure or service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei honor_view_20_firmware *
huawei honor_20_pro_firmware *
huawei honor_20_firmware *
huawei honor_magic2_firmware *
CVE-2020-1809 LOW

HUAWEI Mate 10 smartphones with versions earlier than 10.0.0.143(C00E143R2P4) have an information disclosure vulnerability. The attacker could wake up voice assistant then do a series of crafted voice operation, successful exploit could allow the attacker read certain files without unlock the phone leading to information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_10_firmware *
CVE-2020-1810 MEDIUM

There is a weak algorithm vulnerability in some Huawei products. The affected products use the RSA algorithm in the SSL key exchange algorithm which have been considered as a weak algorithm. Attackers may exploit this vulnerability to leak some information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei s6700_firmware v200r005c00spc500
huawei cloudengine_12800_firmware v200r001c00
huawei cloudengine_12800_firmware v200r005c10
huawei s5700_firmware v200r007c00spc100
huawei cloudengine_12800_firmware v100r006c00
huawei cloudengine_12800_firmware v200r002c10
huawei cloudengine_12800_firmware v100r003c00spc600
huawei cloudengine_12800_firmware v100r005c10spc100
huawei s5700_firmware v200r007c00spc500
huawei cloudengine_12800_firmware v100r005c00spc200
huawei s6700_firmware v200r005c01
huawei s5700_firmware v200r006c00spc100
huawei s5700_firmware v200r006c00spc300
huawei cloudengine_12800_firmware v200r002c20
huawei s5700_firmware v200r005c00spc500
huawei cloudengine_12800_firmware v200r002c01
huawei cloudengine_12800_firmware v100r005c10hp0001
huawei s5700_firmware v200r006c00spc500
huawei cloudengine_12800_firmware v100r005c00spc300
huawei cloudengine_12800_firmware v100r005c10spc200
huawei s5700_firmware v200r005c03
huawei cloudengine_12800_firmware v100r003c10spc100
CVE-2020-1811 MEDIUM

GaussDB 200 with version of 6.5.1 have a command injection vulnerability. Due to insufficient input validation, remote attackers with low permissions could exploit this vulnerability by sending crafted commands to the affected device. Successful exploit could allow an attacker to execute commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-77,

Products Affected

Vendor Product Version
huawei gaussdb_200 6.5.1
CVE-2020-1812 MEDIUM

HUAWEI P30 smartphones with versions earlier than 10.0.0.173(C00E73R1P11) have an improper authentication vulnerability. Due to improperly validation of certain application, an attacker should trick the user into installing a malicious application to exploit this vulnerability. Successful exploit could allow the attacker to bypass the authentication to perform unauthorized operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-1813 MEDIUM

HUAWEI P30 smart phone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper authentication vulnerability. Due to improper authentication of specific interface, in specific scenario attackers could access specific interface without authentication. Successful exploit could allow the attacker to perform unauthorized operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-1814 LOW

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a Dangling pointer dereference vulnerability. An authenticated attacker may do some special operations in the affected products in some special scenarios to exploit the vulnerability. Due to improper race conditions of different operations, successful exploit will lead to Dangling pointer dereference, causing some service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,CWE-362,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1815 MEDIUM

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a memory leak vulnerability. The software does not sufficiently track and release allocated memory while parse certain message, the attacker sends the message continuously that could consume remaining memory. Successful exploit could cause memory exhaust.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1816 MEDIUM

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a Denial of Service (DoS) vulnerability. Due to improper processing of specific IPSEC packets, remote attackers can send constructed IPSEC packets to affected devices to exploit this vulnerability. Successful exploit could cause the IPSec function of the affected device abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1817 MEDIUM

Huawei PCManager with versions earlier than 10.0.1.36 has a privilege escalation vulnerability. Due to improper permission management of specific files, local attackers with low permissions can inject commands to exploit this vulnerability. Successful exploit may cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager *
CVE-2020-1818

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei ips_module_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v500r002c20
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg6000v_firmware v500r003c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-1819

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
psirt@huawei.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei ips_module_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v500r002c20
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg6000v_firmware v500r003c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-1820

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
psirt@huawei.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei ips_module_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v500r002c20
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg6000v_firmware v500r003c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-1821

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
psirt@huawei.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei ips_module_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v500r002c20
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg6000v_firmware v500r003c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-1822

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
psirt@huawei.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei ips_module_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v500r002c20
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg6000v_firmware v500r003c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-1823

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
psirt@huawei.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei ips_module_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v500r002c20
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg6000v_firmware v500r003c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-1824

There are multiple out of bounds (OOB) read vulnerabilities in the implementation of the Common Open Policy Service (COPS) protocol of some Huawei products. The specific decoding function may occur out-of-bounds read when processes an incoming data packet. Successful exploit of these vulnerabilities may disrupt service on the affected device. (Vulnerability ID: HWPSIRT-2018-12275,HWPSIRT-2018-12276,HWPSIRT-2018-12277,HWPSIRT-2018-12278,HWPSIRT-2018-12279,HWPSIRT-2018-12280 and HWPSIRT-2018-12289) The seven vulnerabilities have been assigned seven Common Vulnerabilities and Exposures (CVE) IDs: CVE-2020-1818, CVE-2020-1819, CVE-2020-1820, CVE-2020-1821, CVE-2020-1822, CVE-2020-1823 and CVE-2020-1824.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
psirt@huawei.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei ips_module_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei ngfw_module_firmware v500r002c20
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg6000v_firmware v500r003c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-1825 MEDIUM

FusionAccess with versions earlier than 6.5.1.SPC002 have a Denial of Service (DoS) vulnerability. Due to insufficient verification on specific input, attackers can exploit this vulnerability by sending constructed messages to the affected device through another device on the same network. Successful exploit could cause affected devices to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei fusionaccess *
CVE-2020-1826 LOW

Huawei Honor Magic2 mobile phones with versions earlier than 10.0.0.175(C00E59R2P11) have an information leak vulnerability. Due to a module using weak encryption tool, an attacker with the root permission may exploit the vulnerability to obtain some information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei honor_magic2_firmware *
CVE-2020-1827 MEDIUM

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have an information leakage vulnerability. An attacker can exploit this vulnerability by sending specific request packets to affected devices. Successful exploit may lead to information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-404,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc100
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei usg9500_firmware v500r005c00spc100
CVE-2020-1828 MEDIUM

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have an input validation vulnerability where the IPSec module does not validate a field in a specific message. Attackers can send specific message to cause out-of-bound read, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-125,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1829 MEDIUM

Huawei NIP6800 versions V500R001C30 and V500R001C60SPC500; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, and V500R001C60SPC500 have a vulnerability that the IPSec module handles a message improperly. Attackers can send specific message to cause double free memory. This may compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1830 MEDIUM

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a vulnerability that a memory management error exists when IPSec Module handing a specific message. This causes 1 byte out-of-bound read, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1831 LOW

HUAWEI Mate 20 smartphones with versions earlier than 10.0.0.195(SP31C00E74R3P8) have an improper authorization vulnerability. The digital balance function does not sufficiently restrict the using time of certain user, successful exploit could allow the user break the limit of digital balance function after a series of operations with a PC.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-1832 MEDIUM

E6878-370 products with versions of 10.0.3.1(H557SP27C233) and 10.0.3.1(H563SP1C00) have a stack buffer overflow vulnerability. The program copies an input buffer to an output buffer without verification. An attacker in the adjacent network could send a crafted message, successful exploit could lead to stack buffer overflow which may cause malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei e6878-370_firmware 10.0.3.1(h557sp27c233)
huawei e6878-370_firmware 10.0.3.1(h563sp1c233)
CVE-2020-1833 LOW

Honor 9X smartphones with versions earlier than 9.1.1.172(C00E170R8P1) have an improper authentication vulnerability. A logic error occurs when handling clock function, an attacker should do a series of crafted operations quickly before the phone is unlocked, successful exploit could allow the attacker to access clock information without unlock the phone.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_9x_firmware *
CVE-2020-1834 LOW

HUAWEI P30 and HUAWEI P30 Pro with versions earlier than 10.1.0.135(C00E135R2P11) and versions earlier than 10.1.0.135(C00E135R2P8) have an insufficient integrity check vulnerability. The system does not check certain software package's integrity sufficiently. Successful exploit could allow an attacker to load a crafted software package to the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-354,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2020-1835 LOW

HUAWEI Mate 30 with versions earlier than 10.1.0.126(C00E125R5P3) have an information disclosure vulnerability. A logic judgment error occurs when the system handling Bluetooth connections, an attacker could craft as an authenticated Bluetooth peer to launch the attack. Successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
CVE-2020-1836 LOW

HUAWEI P30 with versions earlier than 10.1.0.160(C00E160R2P11) and HUAWEI P30 Pro with versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2020-1837 LOW

ChangXiang 8 Plus with versions earlier than 9.1.0.136(C00E121R1P6T8) have a denial of service vulnerability. The device does not properly handle certain message from base station, the attacker could craft a fake base station to launch the attack. Successful exploit could cause a denial of signal service condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei changxiang_8_plus_firmware *
CVE-2020-1838 LOW

HUAWEI Mate 30 Pro with versions earlier than 10.1.0.150(C00E136R5P3) have is an improper authentication vulnerability. The device does not sufficiently validate certain credential of user's face, an attacker could craft the credential of the user, successful exploit could allow the attacker to pass the authentication with the crafted credential.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_30_pro_firmware *
CVE-2020-1839 LOW

HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a race condition vulnerability. There is a timing window exists in which certain pointer members can be modified by another process that is operating concurrently, an attacker should trick the user into running a crafted application with high privilege, successful exploit could cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.3 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H 0.3 5.9

CVSS 2.0

Severity: LOW

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
CVE-2020-1840 LOW

HUAWEI Mate 20 smart phones with versions earlier than 10.0.0.175(C00E70R3P8) have an insufficient authentication vulnerability. A local attacker with high privilege can execute a specific command to exploit this vulnerability. Successful exploitation may cause information leak and compromise the availability of the smart phones.Affected product versions include: HUAWEI Mate 20 versions Versions earlier than 10.0.0.175(C00E70R3P8)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H 0.8 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-1841 MEDIUM

Huawei CloudLink Board version 20.0.0; DP300 version V500R002C00; RSE6500 versions V100R001C00, V500R002C00, and V500R002C00SPC900; and TE60 versions V500R002C00, V600R006C00, V600R006C00SPC200, V600R006C00SPC300, V600R006C10, V600R019C00, and V600R019C00SPC100 have an information leak vulnerability. An unauthenticated, remote attacker can make a large number of attempts to guess information. Successful exploitation may cause information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei rse6500_firmware v500r002c00spc900
huawei dp300_firmware v500r002c00
huawei te60_firmware v500r002c00
huawei te60_firmware v600r006c00spc300
huawei rse6500_firmware v500r002c00
huawei te60_firmware v600r019c00spc100
huawei rse6500_firmware v100r001c00
huawei te60_firmware v600r006c10
huawei te60_firmware v600r006c00
huawei cloudlink_board_firmware 20.0.0
huawei te60_firmware v600r006c00spc200
huawei te60_firmware v600r019c00
CVE-2020-1842 MEDIUM

Huawei HEGE-560 version 1.0.1.20(SP2); OSCA-550 and OSCA-550A version 1.0.0.71(SP1); and OSCA-550AX and OSCA-550X version 1.0.0.71(SP2) have an insufficient authentication vulnerability. An attacker can access the device physically and perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker obtain high privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei osca-550ax_firmware 1.0.0.71(sp2)
huawei osca-550x_firmware 1.0.0.71(sp2)
huawei osca-550_firmware 1.0.0.71(sp1)
huawei osca-550a_firmware 1.0.0.71(sp1)
huawei hege-560_firmware 1.0.1.20(sp2)
CVE-2020-1843 MEDIUM

Huawei HEGE-560 version 1.0.1.20(SP2), OSCA-550 version 1.0.0.71(SP1), OSCA-550A version 1.0.0.71(SP1), OSCA-550AX version 1.0.0.71(SP2), and OSCA-550X version 1.0.0.71(SP2) have an insufficient verification vulnerability. An attacker can perform specific operations to exploit this vulnerability by physical access methods. Successful exploitation may cause the attacker perform an illegal operation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei osca-550ax_firmware 1.0.0.71(sp2)
huawei osca-550x_firmware 1.0.0.71(sp2)
huawei osca-550_firmware 1.0.0.71(sp1)
huawei osca-550a_firmware 1.0.0.71(sp1)
huawei hege-560_firmware 1.0.1.20(sp2)
CVE-2020-1844 MEDIUM

PCManager with versions earlier than 10.0.5.51 have a privilege escalation vulnerability in Huawei PCManager products. An authenticated, local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager *
CVE-2020-1845 MEDIUM

Huawei PCManager product with versions earlier than 10.0.5.53 have a local privilege escalation vulnerability. An authenticated, local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager *
CVE-2020-1847 MEDIUM

There is a denial of service vulnerability in some Huawei products. There is no protection against the attack scenario of specific protocol. A remote, unauthorized attackers can construct attack scenarios, which leads to denial of service.Affected product versions include:NIP6300 versions V500R001C30,V500R001C60;NIP6600 versions V500R001C30,V500R001C60;Secospace USG6300 versions V500R001C30,V500R001C60;Secospace USG6500 versions V500R001C30,V500R001C60;Secospace USG6600 versions V500R001C30,V500R001C60;USG9500 versions V500R001C30,V500R001C60.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c60
huawei secospace_usg6300_firmware v500r001c60
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c30
huawei usg9500_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c60
CVE-2020-1848 LOW

There is a resource management error vulnerability in Jackman-AL00D versions 8.2.0.185(C00R2P1). Local attackers construct malicious application files, causing system applications to run abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei jackman-al00d_firmware 8.2.0.185(c00r2p1)
CVE-2020-1853 MEDIUM

GaussDB 200 with version of 6.5.1 have a path traversal vulnerability. Due to insufficient input path validation, an authenticated attacker can traverse directories and download files to a specific directory. Successful exploit may cause information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei gaussdb_200 6.5.1
CVE-2020-1855 LOW

Huawei HEGE-570 version 1.0.1.22(SP3); and HEGE-560, OSCA-550, OSCA-550A, OSCA-550AX, and OSCA-550X version 1.0.1.21(SP3) have an insufficient verification vulnerability. An attacker can access the device physically and exploit this vulnerability to tamper with device information. Successful exploit may cause service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 0.9 5.2

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei hege-570_firmware 1.0.1.22(sp3)
huawei osca-550x_firmware 1.0.1.21(sp3)
huawei osca-550_firmware 1.0.1.21(sp3)
huawei osca-550ax_firmware 1.0.1.21(sp3)
huawei osca-550a_firmware 1.0.1.21(sp3)
huawei hege-560_firmware 1.0.1.21(sp3)
CVE-2020-1856 MEDIUM

Huawei NGFW Module, NIP6300, NIP6600, Secospace USG6500, Secospace USG6600, and USG9500 versions V500R001C30, V500R001C60, and V500R005C00 have an information leakage vulnerability. An attacker can exploit this vulnerability by sending specific request packets to affected devices. Successful exploit may lead to information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c60
huawei usg9500_firmware v500r001c30
huawei usg9500_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei ngfw_module_firmware v500r001c60
huawei usg9500_firmware v500r005c00
huawei ngfw_module_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
CVE-2020-1857 LOW

Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; and Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have an information leakage vulnerability. Due to improper processing of some data, a local authenticated attacker can exploit this vulnerability through a series of operations. Successful exploitation may cause information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc100
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei usg9500_firmware v500r005c00spc100
CVE-2020-1858 MEDIUM

Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of service vulnerability. Attackers need to perform a series of operations in a special scenario to exploit this vulnerability. Successful exploit may cause the new connections can't be established, result in a denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc100
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei usg9500_firmware v500r005c00spc100
CVE-2020-1860 MEDIUM

NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an access control bypass vulnerability. Attackers that can access to the internal network can exploit this vulnerability with careful deployment. Successful exploit may cause the access control to be bypassed, and attackers can directly access the Internet.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c60
huawei secospace_usg6600_firmware v500r005c00
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30
huawei usg9500_firmware v500r005c00
huawei usg9500_firmware v500r001c60
CVE-2020-1861 LOW

CloudEngine 12800 with versions of V200R001C00SPC600,V200R001C00SPC700,V200R002C01,V200R002C50SPC800,V200R002C50SPC800PWE,V200R003C00SPC810,V200R003C00SPC810PWE,V200R005C00SPC600,V200R005C00SPC800,V200R005C00SPC800PWE,V200R005C10,V200R005C10SPC300 have an information leakage vulnerability in some Huawei products. In some special cases, an authenticated attacker can exploit this vulnerability because the software processes data improperly. Successful exploitation may lead to information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v200r005c10
huawei cloudengine_12800_firmware v200r001c00spc700
huawei cloudengine_12800_firmware v200r002c50spc800pwe
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_12800_firmware v200r005c10spc300
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r005c00spc800pwe
huawei cloudengine_12800_firmware v200r003c00spc810pwe
huawei cloudengine_12800_firmware v200r001c00spc600
huawei cloudengine_12800_firmware v200r002c01
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_12800_firmware v200r005c00spc600
CVE-2020-1862 LOW

There is a double free vulnerability in some Huawei products. A local attacker with low privilege may perform some operations to exploit the vulnerability. Due to doubly freeing memory, successful exploit may cause some service abnormal. Affected product versions include:CampusInsight versions V100R019C00;ManageOne versions 6.5.RC2.B050.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei manageone 6.5
huawei campusinsight v100r019c00
CVE-2020-1863 MEDIUM

Huawei USG6000V with versions V500R001C20SPC300, V500R003C00SPC100, and V500R005C00SPC100 have an out-of-bounds read vulnerability. Due to a logical flaw in a JSON parsing routine, a remote, unauthenticated attacker could exploit this vulnerability to disrupt service in the affected products.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei usg6000v_firmware v500r005c00spc100
huawei usg6000v_firmware v500r001c20spc300
huawei usg6000v_firmware v500r003c00spc100
CVE-2020-1864 MEDIUM

Some Huawei products have a security vulnerability due to improper authentication. A remote attacker needs to obtain some information and forge the peer device to send specific packets to the affected device. Due to the improper implementation of the authentication function, attackers can exploit the vulnerability to connect to affected devices and execute a series of commands.Affected product versions include:Secospace AntiDDoS8000 versions V500R001C00,V500R001C20,V500R001C60,V500R005C00.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei secospace_antiddos8000_firmware v500r001c60
huawei secospace_antiddos8000_firmware v500r001c20
huawei secospace_antiddos8000_firmware v500r005c00
huawei secospace_antiddos8000_firmware v500r001c00
CVE-2020-1865 LOW

There is an out-of-bounds read vulnerability in Huawei CloudEngine products. The software reads data past the end of the intended buffer when parsing certain PIM message, an adjacent attacker could send crafted PIM messages to the device, successful exploit could cause out of bounds read when the system does the certain operation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r005c00spc800
huawei cloudengine_5800_firmware v200r019c10spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_7800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r019c10spc800
huawei cloudengine_6800_firmware v200r019c10spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r002c50spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r019c10spc800
huawei cloudengine_5800_firmware v200r003c00spc810
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_6800_firmware v200r002c50spc800
huawei cloudengine_5800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2020-1866 LOW

There is an out-of-bounds read vulnerability in several products. The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could cause certain service abnormal. Affected product versions include:NIP6800 versions V500R001C30,V500R001C60SPC500,V500R005C00;S12700 versions V200R008C00;S2700 versions V200R008C00;S5700 versions V200R008C00;S6700 versions V200R008C00;S7700 versions V200R008C00;S9700 versions V200R008C00;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00;USG9500 versions V500R001C30SPC300,V500R001C30SPC600,V500R001C60SPC500,V500R005C00.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei nip6800_firmware v500r005c00
huawei s7700_firmware v200r008c00
huawei nip6800_firmware v500r001c30
huawei s5700_firmware v200r008c00
huawei usg9500_firmware v500r001c30spc600
huawei s6700_firmware v200r008c00
huawei usg9500_firmware v500r001c30spc300
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei s2700_firmware v200r008c00
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei s12700_firmware v200r008c00
CVE-2020-1870 MEDIUM

There is a denial of service vulnerability in some Huawei products. Due to improper memory management, memory leakage may occur in some special cases. Attackers can perform a series of operations to exploit this vulnerability. Successful exploit may cause a denial of service. Affected product versions include: CloudEngine 12800 versions V200R019C00SPC800; CloudEngine 5800 versions V200R019C00SPC800; CloudEngine 6800 versions V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 versions V200R019C00SPC800; NE40E versions V800R011C00SPC200, V800R011C00SPC300, V800R011C10SPC100; NE40E-F versions V800R011C00SPC200, V800R011C10SPC100; NE40E-M versions V800R011C00SPC200, V800R011C10SPC100.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_12800_firmware v200r019c00
huawei cloudengine_12800_firmware v200r019c00spc600
huawei cloudengine_12800_firmware v200r019c10
CVE-2020-1871 MEDIUM

USG9500 with software of V500R001C30SPC100; V500R001C30SPC200; V500R001C30SPC600; V500R001C60SPC500; V500R005C00SPC100; V500R005C00SPC200 have an improper credentials management vulnerability. The software does not properly manage certain credentials. Successful exploit could cause information disclosure or damage, and impact the confidentiality or integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.2 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N 3.9 4.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc100
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00spc200
huawei usg9500_firmware v500r001c30spc600
huawei usg9500_firmware v500r005c00spc100
CVE-2020-1872 LOW

Huawei smart phones P10 Plus with versions earlier than 9.1.0.201(C01E75R1P12T8), earlier than 9.1.0.252(C185E2R1P9T8), earlier than 9.1.0.252(C432E4R1P9T8), and earlier than 9.1.0.255(C576E6R1P8T8) have a digital balance bypass vulnerability. When re-configuring the mobile phone at the digital balance mode, an attacker can perform some operations to bypass the startup wizard, and then open some switch. As a result, the digital balance function is bypassed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p10_plus_firmware *
CVE-2020-1873 HIGH

NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds read vulnerability. An unauthenticated attacker crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause the device reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc100
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei usg9500_firmware v500r005c00spc100
CVE-2020-1874 MEDIUM

NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have a invalid pointer access vulnerability. The software system access an invalid pointer when operator logs in to the device and performs some operations. Successful exploit could cause certain process reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-824,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc100
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00spc100
huawei secospace_usg6600_firmware v500r001c30spc600
huawei usg9500_firmware v500r005c00spc100
CVE-2020-1875 LOW

NIP6800;Secospace USG6600;USG9500 products versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access vulnerability. The software system access an invalid pointer when an abnormal condition occurs in certain operation. Successful exploit could cause certain process reboot. Affected product versions include:NIP6800 versions V500R001C30,V500R001C60SPC500;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500;USG9500 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-824,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1876 MEDIUM

NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an out-of-bounds write vulnerability. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1877 MEDIUM

NIP6800;Secospace USG6600;USG9500 with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have an invalid pointer access vulnerability. The software system access an invalid pointer when administrator log in to the device and performs some operations. Successful exploit could cause certain process reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 0.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-824,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1878 LOW

Huawei smartphone OxfordS-AN00A with versions earlier than 10.0.1.152D(C735E152R3P3),versions earlier than 10.0.1.160(C00E160R4P1) have an improper authentication vulnerability. Authentication to target component is improper when device performs an operation. Attackers exploit this vulnerability to obtain some information by loading malicious application, leading to information leak.

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei oxfords-an00a_firmware *
CVE-2020-1879 LOW

There is an improper integrity checking vulnerability on some huawei products. The software of the affected product has an improper integrity check which may allow an attacker with high privilege to make malicious modifications.Affected product versions include:HEGE-560 versions 1.0.1.21(SP3);HEGE-570 versions 1.0.1.22(SP3);OSCA-550 versions 1.0.1.21(SP3);OSCA-550A versions 1.0.1.21(SP3);OSCA-550AX versions 1.0.1.21(SP3);OSCA-550X versions 1.0.1.21(SP3).

CVSS 2.0

Severity: LOW

Problem Type: CWE-354,

Products Affected

Vendor Product Version
huawei hege-570_firmware 1.0.1.21(sp3)
huawei osca-550x_firmware 1.0.1.21(sp3)
huawei osca-550_firmware 1.0.1.21(sp3)
huawei osca-550ax_firmware 1.0.1.21(sp3)
huawei osca-550a_firmware 1.0.1.21(sp3)
huawei hege-560_firmware 1.0.1.21(sp3)
CVE-2020-1880 MEDIUM

Huawei smartphone Lion-AL00C with versions earlier than 10.0.0.205(C00E202R7P2) have a denial of service vulnerability. An attacker crafted specially file to the affected device. Due to insufficient input validation of the value when executing the file, successful exploit may cause device abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei lion-al00c_firmware *
CVE-2020-1881 MEDIUM

NIP6800;Secospace USG6600;USG9500 products with versions of V500R001C30; V500R001C60SPC500; V500R005C00SPC100 have have a resource management error vulnerability. An attacker needs to perform specific operations to trigger a function of the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei oceanstor_5310_firmware v500r007c60spc100
huawei usg9500_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-1882 LOW

Huawei mobile phones Ever-L29B versions earlier than 10.0.0.180(C185E6R3P3), earlier than 10.0.0.180(C432E6R1P7), earlier than 10.0.0.180(C636E5R2P3); HUAWEI Mate 20 RS versions earlier than 10.0.0.175(C786E70R3P8); HUAWEI Mate 20 X versions earlier than 10.0.0.176(C00E70R2P8); and Honor Magic2 versions earlier than 10.0.0.175(C00E59R2P11) have an improper authorization vulnerability. Due to improper authorization of some function, attackers can bypass the authorization to perform some operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei ever-l29b_firmware *
huawei mate_20_rs_firmware *
huawei mate_20_x_firmware *
huawei honor_magic2_firmware *
CVE-2020-1883 MEDIUM

Huawei products NIP6800;Secospace USG6600;USG9500 have a memory leak vulnerability. An attacker with high privileges exploits this vulnerability by continuously performing specific operations. Successful exploitation of this vulnerability can cause service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-36600

Out-of-bounds write vulnerability in the power consumption module. Successful exploitation of this vulnerability may cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-36601

Out-of-bounds write vulnerability in the kernel modules. Successful exploitation of this vulnerability may cause a panic reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 10.1.0
huawei magic_ui 3.1.0
CVE-2020-36602

There is an out-of-bounds read and write vulnerability in some headset products. An unauthenticated attacker gets the device physically and crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause out-of-bounds read and write.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 0.9 5.2

Products Affected

Vendor Product Version
huawei cm-h-shark-bd_firmware 1.0.0.588
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp27)
huawei cm-h-shark-bd_firmware 1.0.0.576
huawei cm-h-shark-bd_firmware 1.0.0.586
huawei cm-h-shark-bd_firmware 1.0.0.116
huawei cm-h-shark-bd_firmware 1.0.0.226
huawei bi-acc-report_firmware 1.0.0.1
huawei cm-h-shark-bd_firmware 1.9.0.578
huawei cm-h-shark-bd_firmware 1.9.0.228
huawei cm-h-shark-bd_firmware 1.0.0.216
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp31)
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp15)
huawei cm-h-shark-bd_firmware 1.0.0.208
huawei cm-h-shark-bd_firmware 1.9.0.216
huawei cm-h-shark-bd_firmware 1.9.0.226
huawei cm-h-shark-bd_firmware 1.9.0.566
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp29)
huawei cm-h-shark-bd_firmware 1.9.0.208
huawei 581up-hota-cm-h-shark-bd_firmware 1.0.0.581
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp33)
huawei cm-h-shark-bd_firmware 1.0.0.578
huawei 586-hota-cm-h-shark-bd_firmware 1.0.0.586
huawei cm-h-shark-bd_firmware 1.9.0.588
huawei bi-acc-report_firmware 1.0.0.2
huawei bi-acc-report_firmware 1.0.0.3
huawei cm-h-shark-bd_firmware 1.0.0.106
huawei 606-hota-cm-h-shark-bd_firmware 1.0.0.606
huawei cm-h-shark-bd_firmware 1.9.0.586
huawei cm-h-shark-bd_firmware 1.0.0.566
huawei bi-acc-report_firmware 1.0.0.4
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp17)
huawei cm-h-shark-bd_firmware 1.0.0.228
huawei 588-hota-cm-h-shark-bd_firmware 1.0.0.588
huawei cm-h-shark-bd_firmware 1.9.0.520
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp21)
huawei cm-h-shark-bd_firmware 1.0.0.66(vn2-sp11)
huawei cm-h-shark-bd_firmware 1.0.0.510
huawei 577hota-cm-h-shark-bd_firmware 1.0.0.577
huawei cm-h-shark-bd_firmware 1.0.0.202
huawei cm-h-shark-bd_firmware 1.0.0.522
huawei 576up005_hota-cm-h-shark-bd_firmware 1.0.0.576
huawei bi-acc-report_firmware 1.0.0.5
huawei cm-h-shark-bd_firmware 1.9.0.510
huawei cm-h-shark-bd_firmware 1.0.0.520
huawei cm-h-shark-bd_firmware 1.9.0.522
CVE-2020-8840 HIGH

FasterXML jackson-databind 2.0.0 through 2.9.10.2 lacks certain xbean-reflect/JNDI blocking, as demonstrated by org.apache.xbean.propertyeditor.JndiConverter.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,

Products Affected

Vendor Product Version
netapp oncommand_workflow_automation -
huawei oceanstor_9000_firmware v300r006c20
huawei oceanstor_9000_firmware v300r006c20spc200
debian debian_linux 8.0
netapp oncommand_api_services -
huawei oceanstor_9000_firmware v300r006c20spc300
oracle global_lifecycle_management_opatch *
netapp service_level_manager -
fasterxml jackson-databind *
netapp steelstore_cloud_integrated_storage -
huawei oceanstor_9000_firmware v300r006c20spc100
CVE-2020-9064 LOW

Huawei smartphone Honor V30 with versions earlier than OxfordS-AN00A 10.0.1.167(C00E166R4P1) have an improper authentication vulnerability. Authentication to target component is improper when device performs an operation. Attackers exploit this vulnerability to obtain some information by loading malicious application, leading to information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_v30_firmware *
CVE-2020-9065 LOW

Huawei smart phone Taurus-AL00B with versions earlier than 10.0.0.203(C00E201R7P2) have a use-after-free (UAF) vulnerability. An authenticated, local attacker may perform specific operations to exploit this vulnerability. Successful exploitation may tamper with the information to affect the availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei taurus-al00b_firmware *
CVE-2020-9066 MEDIUM

Huawei smartphones OxfordP-AN10B with versions earlier than 10.0.1.169(C00E166R4P1) have an improper authentication vulnerability. The Application doesn't perform proper authentication when user performs certain operations. An attacker can trick user into installing a malicious plug-in to exploit this vulnerability. Successful exploit could allow the attacker to bypass the authentication to perform unauthorized operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei oxfordp-an10b_firmware *
CVE-2020-9067 MEDIUM

There is a buffer overflow vulnerability in some Huawei products. The vulnerability can be exploited by an attacker to perform remote code execution on the affected products when the affected product functions as an optical line terminal (OLT). Affected product versions include:SmartAX MA5600T versions V800R013C10, V800R015C00, V800R015C10, V800R017C00, V800R017C10, V800R018C00, V800R018C10; SmartAX MA5800 versions V100R017C00, V100R017C10, V100R018C00, V100R018C10, V100R019C10; SmartAX EA5800 versions V100R018C00, V100R018C10, V100R019C10.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.0 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.1 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei smartax_ma5800_firmware v100r017c10
huawei smartax_ma5800_firmware v100r019c10
huawei smartax_ma5600t_firmware v800r013c10
huawei smartax_ma5600t_firmware v800r015c00
huawei smartax_ma5600t_firmware v800r015c10
huawei smartax_ma5600t_firmware v800r018c00
huawei smartax_ma5600t_firmware v800r018c10
huawei smartax_ea5800_firmware v100r018c10
huawei smartax_ma5600t_firmware v800r017c10
huawei smartax_ma5800_firmware v100r018c10
huawei smartax_ea5800_firmware v100r018c00
huawei smartax_ea5800_firmware v100r019c10
huawei smartax_ma5600t_firmware v800r017c00
huawei smartax_ma5800_firmware v100r018c00
huawei smartax_ma5800_firmware v100r017c00
CVE-2020-9068 HIGH

Huawei AR3200 products with versions of V200R007C00SPC900, V200R007C00SPCa00, V200R007C00SPCb00, V200R007C00SPCc00, V200R009C00SPC500 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. Successful exploit may obtain certain permissions on the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei ar3200_firmware v200r007c00spca00
huawei ar3200_firmware v200r007c00spcc00
huawei ar3200_firmware v200r009c00spc500
huawei ar3200_firmware v200r007c00spc900
huawei ar3200_firmware v200r007c00spcb00
CVE-2020-9069 LOW

There is an information leakage vulnerability in some Huawei products. An unauthenticated, adjacent attacker could exploit this vulnerability to decrypt data. Successful exploitation may leak information randomly. Affected product versions include: Anne-AL00 Versions earlier than 9.1.0.331(C675E9R1P3T8); Berkeley-L09 Versions earlier than 10.0.1.1(C675R1); CD16-10 Versions earlier than 10.0.2.8; CD17-10 Versions earlier than 10.0.2.8; CD17-16 Versions earlier than 10.0.2.8; CD18-10 Versions earlier than 10.0.2.8; CD18-16 Versions earlier than 10.0.2.8; Columbia-TL00B Versions earlier than 9.0.0.187(C01E181R1P20T8); E6878-370 Versions earlier than 10.0.5.1(H610SP10C00); HUAWEI P30 lite Versions earlier than 10.0.0.185(C605E3R1P3), Versions earlier than 10.0.0.197(C432E8R2P7); HUAWEI nova 4e Versions earlier than 10.0.0.158(C00E64R1P9); Honor 10 Lite 9.0.1.113(C675E11R1P12); LelandP-L22A Versions earlier than 9.1.0.166(C675E5R1P4T8); Marie-AL00AX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00AY Versions earlier than 10.0.0.158(C00E64R1P9); Marie-AL00BX Versions earlier than 10.0.0.158(C00E64R1P9); Marie-L03BX Versions earlier than 10.0.0.188(C605E5R1P1); Marie-L21BX Versions earlier than 10.0.0.188(C432E4R4P1), Versions earlier than 10.0.0.188(C461E5R3P1); Marie-L22BX Versions earlier than 10.0.0.188(C636E3R3P1); Marie-L23BX Versions earlier than 10.0.0.188(C605E5R1P1); TC5200-16 Versions earlier than 10.0.2.8; WS5200-11 Versions earlier than 10.0.2.8; WS5200-12 Versions earlier than 10.0.2.23; WS5200-16 Versions earlier than 10.0.2.8; WS5200-17 Versions earlier than 10.0.2.23; WS5800-10 Versions earlier than 10.0.3.27; WS6500-10 Versions earlier than 10.0.2.8; WS6500-16 Versions earlier than 10.0.2.8

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cd18-10_firmware *
huawei ws6500-10_firmware *
huawei columbia-tl00b_firmware *
huawei cd16-10_firmware *
huawei ws5200-11_firmware *
huawei cd17-10_firmware *
huawei honor_10_lite_firmware *
huawei ws5200-16_firmware *
huawei tc5200-16_firmware *
huawei anne-al00_firmware *
huawei ws5200-17_firmware *
huawei ws5800-10_firmware *
huawei berkeley-l09_firmware *
huawei lelandp-l22a_firmware *
huawei ws6500-16_firmware *
huawei cd17-16_firmware *
huawei cd18-16_firmware *
huawei e6878-370_firmware *
CVE-2020-9070 MEDIUM

Huawei smartphones Taurus-AL00B with versions earlier than 10.0.0.205(C00E201R7P2) have an improper authentication vulnerability. The software insufficiently validate the user's identity when a user wants to do certain operation. An attacker can trick user into installing a malicious application to exploit this vulnerability. Successful exploit may cause some information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei taurus-al00b_firmware *
CVE-2020-9071 MEDIUM

There is a few bytes out-of-bounds read vulnerability in some Huawei products. The software reads data past the end of the intended buffer when parsing certain message, an authenticated attacker could exploit this vulnerability by sending crafted messages to the device. Successful exploit may cause service abnormal in specific scenario.Affected product versions include:AR120-S versions V200R007C00SPC900,V200R007C00SPCa00

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ar2200-s_firmware v200r007c00spcb00
huawei ar3200_firmware v200r007c00spcb00
huawei netengine16ex_firmware v200r007c00spcc00
huawei srg1300_firmware v200r007c00spcb00
huawei ar200_firmware v200r007c00spcc00
huawei ar200_firmware v200r007c00spc900
huawei ar160_firmware v200r007c00spcb00
huawei ar1200-s_firmware v200r007c00spcc00
huawei ar120-s_firmware v200r007c00spca00
huawei ar3200_firmware v200r007c00spcc00
huawei ar3200_firmware v200r007c00spc900
huawei ar150_firmware v200r007c00spcb00
huawei srg3300_firmware v200r007c00spcb00
huawei ar2200_firmware v200r007c00spcb00
huawei ar1200_firmware v200r007c00spc900pwe
huawei srg1300_firmware v200r007c00spcc00
huawei ar160_firmware v200r007c00spc900pwe
huawei ar3600_firmware v200r007c00spcc00
huawei ar160_firmware v200r007c00spc900
huawei ar120-s_firmware v200r007c00spcb00
huawei ar1200_firmware v200r007c00spcb00pwe
huawei srg3300_firmware v200r007c00spc900
huawei ar200-s_firmware v200r007c00spcc00
huawei srg2300_firmware v200r007c00spcc00
huawei ar3600_firmware v200r007c00spcb00pwe
huawei ar2200-s_firmware v200r007c00spcc00
huawei ar3200_firmware v200r007c00
huawei ar3600_firmware v200r007c00spc900pwe
huawei ar2200_firmware v200r007c00spcb00pwe
huawei srg2300_firmware v200r007c00spcb00
huawei ar150_firmware v200r007c00spcc00
huawei srg3300_firmware v200r007c00spcc00
huawei ar3200_firmware v200r007c00spcb00pwe
huawei ar1200_firmware v200r007c00spc900
huawei ar150_firmware v200r007c00spc900
huawei srg1300_firmware v200r007c00spc900
huawei ar150-s_firmware v200r007c00spc900
huawei ar200_firmware v200r007c00spcb00pwe
huawei netengine16ex_firmware v200r007c00spc900
huawei ar120-s_firmware v200r007c00spc900
huawei ar1200_firmware v200r007c00spcb00
huawei ar1200_firmware v200r007c00spca00
huawei ar2200-s_firmware v200r007c00spc900
huawei ar2200_firmware v200r007c00spca00
huawei ar200-s_firmware v200r007c00spc900
huawei netengine16ex_firmware v200r007c00spcb00
huawei ar3600_firmware v200r007c00spc900
huawei ar160_firmware v200r007c00spcb00pwe
huawei ar510_firmware v200r007c00spc900
huawei ar1200_firmware v200r007c00spcc00
huawei ar2200_firmware v200r007c00spcc00
huawei ar3200_firmware v200r007c00spca00
huawei ar2200_firmware v200r007c00spc900
huawei ar200-s_firmware v200r007c00spcb00
huawei ar1200-s_firmware v200r007c00spc900
huawei ar150-s_firmware v200r007c00spcb00
huawei ar200_firmware v200r007c00spc900pwe
huawei ar2200_firmware v200r007c00spc900pwe
huawei ar150-s_firmware v200r007c00spcc00
huawei ar3600_firmware v200r007c00spcb00
huawei ar200_firmware v200r007c00spcb00
huawei ar150_firmware v200r007c00spcb00pwe
huawei ar1200-s_firmware v200r007c00spcb00
huawei ar160_firmware v200r007c00spcc00
huawei ar150_firmware v200r007c00spc900pwe
huawei srg2300_firmware v200r007c00spc900
huawei ar120-s_firmware v200r007c00spcc00
huawei ar3200_firmware v200r007c00spc900pwe
CVE-2020-9072 MEDIUM

Huawei OSD product with versions earlier than OSD_uwp_9.0.32.0 have a local privilege escalation vulnerability. An authenticated, local attacker can constructs a specific file path to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei osd_firmware *
CVE-2020-9073 LOW

Huawei P20 smartphones with versions earlier than 10.0.0.156(C00E156R1P4) have an improper authentication vulnerability. The vulnerability is due to that when an user wants to do certain operation, the software insufficiently validate the user's identity. Attackers need to physically access the smartphone to exploit this vulnerability. Successful exploit could allow the attacker to bypass the limit of student mode function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei p20_firmware *
CVE-2020-9074 MEDIUM

Huawei Smartphones HONOR 20 PRO;Honor View 20;HONOR 20 have an improper handling of exceptional condition Vulnerability. A component cannot deal with an exception correctly. Attackers can exploit this vulnerability by sending malformed message. This could compromise normal service of affected phones.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
huawei honor_view_20_firmware *
huawei honor_20_pro_firmware *
huawei honor_20_firmware *
CVE-2020-9075 MEDIUM

Huawei products Secospace USG6300;USG6300E with versions of V500R001C30,V500R001C50,V500R001C60,V500R001C80,V500R005C00,V500R005C10;V600R006C00 have a vulnerability of insufficient input verification. An attacker with limited privilege can exploit this vulnerability to access a specific directory. Successful exploitation of this vulnerability may lead to information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c60
huawei usg6300e_firmware v600r006c00
huawei secospace_usg6300_firmware v500r005c10
huawei secospace_usg6600_firmware v500r001c80
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-9076 MEDIUM

HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135(C00E135R2P11); versions earlier than 10.1.0.135(C00E135R2P8), versions earlier than 10.1.0.135 have an improper authentication vulnerability. Due to the identity of the message sender not being properly verified, an attacker can exploit this vulnerability through man-in-the-middle attack to induce user to access malicious URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N 1.6 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
huawei p30_firmware *
huawei tony-al00b_firmware *
CVE-2020-9077 MEDIUM

HUAWEI P30 smart phones with versions earlier than 10.1.0.160(C00E160R2P11) have an information exposure vulnerability. The system does not properly authenticate the application that access a specified interface. Attackers can trick users into installing malicious software to exploit this vulnerability and obtain some information about the device. Successful exploit may cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-9078 MEDIUM

FusionCompute 8.0.0 have local privilege escalation vulnerability. A local, authenticated attacker could perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9079 MEDIUM

FusionSphere OpenStack 8.0.0 have a protection mechanism failure vulnerability. The product incorrectly uses a protection mechanism. An attacker has to find a way to exploit the vulnerability to conduct directed attacks against the affected product.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack 8.0.0
CVE-2020-9080

There is an improper privilege management vulnerability in Huawei smart phone product. A local, authenticated attacker could craft a specific input to exploit this vulnerability. Successful exploitation may lead to local privilege escalation. (Vulnerability ID: HWPSIRT-2020-05272) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9080.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei mate_20_pro_(ud)_firmware 10.1.0.135(c00e135r3p8)
huawei nova_5i_firmware *
huawei mate_20_pro_firmware 10.1.0.135(c01e135r2p8)
CVE-2020-9081

There is an improper authorization vulnerability in some Huawei smartphones. An attacker could perform a series of operation in specific mode to exploit this vulnerability. Successful exploit could allow the attacker to bypass app lock. (Vulnerability ID: HWPSIRT-2019-12144) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9081.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.5 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 0.9 2.5
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei yale-al00a_firmware *
huawei princeton-al10d_firmware *
huawei p30_pro_firmware *
huawei p30_firmware *
huawei yalep-al10b_firmware *
huawei yale-al50a_firmware *
CVE-2020-9082

There is an information disclosure vulnerability in several smartphones. The system has a logic judging error under certain scenario, the attacker should gain the permit to execute commands in ADB mode and then do a series of operation on the phone. Successful exploit could allow the attacker to gain certain information from certain apps locked by Applock. (Vulnerability ID: HWPSIRT-2019-07112) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9082.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.5 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 0.9 2.5
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-9083 LOW

HUAWEI Mate 20 smart phones with Versions earlier than 10.1.0.163(C00E160R3P8) have a denial of service (DoS) vulnerability. The attacker can enter a large amount of text on the phone. Due to insufficient verification of the parameter, successful exploitation can impact the service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-9084 MEDIUM

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a use-after-free (UAF) vulnerability. An authenticated, local attacker may perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei taurus-an00b_firmware *
CVE-2020-9085

There is a NULL pointer dereference vulnerability in some Huawei products. An attacker may send specially crafted POST messages to the affected products. Due to insufficient validation of some parameter in the message, successful exploit may cause some process abnormal. (Vulnerability ID: HWPSIRT-2017-10105) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9085.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei b612_firmware b612s-25dtcpu-v100r001b192d03sp00c287
huawei b612_firmware b612s-25dtcpu-v100r001b192d05sp00c00
huawei b612_firmware b612s-25dtcpu-v100r001b192d03sp00c234
CVE-2020-9086

There is a buffer error vulnerability in some Huawei product. An unauthenticated attacker may send special UPNP message to the affected products. Due to insufficient input validation of some value, successful exploit may cause some service abnormal. (Vulnerability ID: HWPSIRT-2017-08234) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9086.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.8 1.4
psirt@huawei.com 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.8 1.4

Products Affected

Vendor Product Version
huawei b612_firmware b612s-25dtcpu-v100r001b192d03sp00c287
huawei b612_firmware b612s-25dtcpu-v100r001b192d05sp00c00
huawei b612_firmware b612s-25dtcpu-v100r001b192d03sp00c234
CVE-2020-9087 LOW

Taurus-AL00A version 10.0.0.1(C00E1R1P1) has an out-of-bounds read vulnerability in XFRM module. An authenticated, local attacker may perform a specific operation to exploit this vulnerability. Due to insufficient validation of the parameters, which may be exploited to cause information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei taurus-al00a_firmware 10.0.0.1(c00e1r1p1)
CVE-2020-9089

There is an information vulnerability in Huawei smartphones. A function in a module can be called without verifying the caller's access. Attackers with user access can exploit this vulnerability to obtain some information. This can lead to information leak. (Vulnerability ID: HWPSIRT-2019-12141) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9089.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9090 MEDIUM

FusionAccess version 6.5.1 has an improper authorization vulnerability. A command is authorized with incorrect privilege. Attackers with other privilege can execute the command to exploit this vulnerability. This may compromise normal service of the affected product.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei fusionaccess 6.5.1
CVE-2020-9091 LOW

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have an out-of-bounds read and write vulnerability. Some functions do not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei taurus-an00b_firmware 10.1.0.156(c00e155r7p2)
CVE-2020-9092 LOW

HUAWEI Mate 20 versions earlier than 10.1.0.163(C00E160R3P8) have a JavaScript injection vulnerability. A module does not verify a specific input. This could allow attackers to bypass filter mechanism to launch JavaScript injection. This could compromise normal service of the affected module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-9093 MEDIUM

There is a use after free vulnerability in Taurus-AL00A versions 10.0.0.1(C00E1R1P1). A module does not deal with specific message properly, which makes a function refer to memory after it has been freed. Attackers can exploit this vulnerability by running a crafted application with common privilege. This would compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei taurus-al00a_firmware 10.0.0.1(c00e1r1p1)
CVE-2020-9094 MEDIUM

There is an out of bound read vulnerability in some verisons of Huawei CloudEngine product. A module does not deal with specific message properly. Attackers can exploit this vulnerability by sending malicious packet. This can lead to denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_5800_firmware v200r019c00spc800
CVE-2020-9095 LOW

HUAWEI P30 Pro smartphone with Versions earlier than 10.1.0.160(C00E160R2P8) has an integer overflow vulnerability. Some functions are lack of verification when they process some messages sent from other module. Attackers can exploit this vulnerability by send malicious message to cause integer overflow. This can compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9096 LOW

HUAWEI P30 Pro smartphones with Versions earlier than 10.1.0.160(C00E160R2P8) have an out of bound read vulnerability. Some functions are lack of verification when they process some messages sent from other module. Attackers can exploit this vulnerability by send malicious message to cause out-of-bound read. This can compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9098 HIGH

Huawei OceanStor 5310 product with version of V500R007C60SPC100 has an invalid pointer access vulnerability. The software system access an invalid pointer when attacker malformed packet. Due to the insufficient validation of some parameter, successful exploit could cause device reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-763,

Products Affected

Vendor Product Version
huawei oceanstor_5310_firmware v500r007c60spc100
CVE-2020-9099 HIGH

Huawei products IPS Module; NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6300; Secospace USG6500; Secospace USG6600; USG9500 with versions of V500R001C00; V500R001C20; V500R001C30; V500R001C50; V500R001C60; V500R001C80; V500R005C00; V500R005C10; V500R005C20; V500R002C00; V500R002C10; V500R002C20; V500R002C30 have an improper authentication vulnerability. Attackers need to perform some operations to exploit the vulnerability. Successful exploit may obtain certain permissions on the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c50
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei nip6600_firmware v500r001c50
huawei nip6300_firmware v500r005c10
huawei secospace_usg6500_firmware v500r001c80
huawei ngfw_module_firmware v500r001c20
huawei nip6300_firmware v500r001c60
huawei secospace_usg6600_firmware v500r005c10
huawei secospace_usg6500_firmware v500r001c00
huawei nip6300_firmware v500r001c80
huawei secospace_usg6300_firmware v500r005c20
huawei secospace_usg6500_firmware v500r001c50
huawei usg9500_firmware v500r005c10
huawei ngfw_module_firmware v500r001c60
huawei usg9500_firmware v500r001c20
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r005c20
huawei ips_module_firmware v500r001c80
huawei nip6300_firmware v500r005c20
huawei nip6800_firmware v500r001c80
huawei nip6600_firmware v500r001c20
huawei ngfw_module_firmware v500r001c50
huawei nip6300_firmware v500r001c30
huawei ips_module_firmware v500r005c10
huawei secospace_usg6300_firmware v500r001c60
huawei usg9500_firmware v500r005c20
huawei secospace_usg6300_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c20
huawei secospace_usg6500_firmware v500r005c20
huawei ips_module_firmware v500r001c60
huawei nip6300_firmware v500r001c20
huawei ips_module_firmware v500r001c00
huawei ngfw_module_firmware v500r002c20
huawei nip6600_firmware v500r005c20
huawei nip6600_firmware v500r005c00
huawei ips_module_firmware v500r005c20
huawei secospace_usg6300_firmware v500r005c10
huawei secospace_usg6500_firmware v500r005c10
huawei ngfw_module_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r001c00
huawei ngfw_module_firmware v500r002c10
huawei secospace_usg6500_firmware v500r005c00
huawei nip6800_firmware v500r005c10
huawei secospace_usg6300_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c80
huawei usg9500_firmware v500r001c50
huawei ngfw_module_firmware v500r002c30
huawei secospace_usg6500_firmware v500r001c20
huawei ngfw_module_firmware v500r002c00
huawei nip6600_firmware v500r001c30
huawei nip6600_firmware v500r005c10
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c30
huawei nip6800_firmware v500r001c60
huawei ngfw_module_firmware v500r005c10
huawei nip6800_firmware v500r005c20
huawei secospace_usg6300_firmware v500r001c80
huawei usg9500_firmware v500r001c80
huawei secospace_usg6300_firmware v500r001c00
huawei secospace_usg6600_firmware v500r001c80
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei ngfw_module_firmware v500r005c20
huawei ips_module_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c30
huawei usg9500_firmware v500r001c60
huawei nip6300_firmware v500r001c00
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c00
huawei ngfw_module_firmware v500r005c00
huawei ips_module_firmware v500r001c20
huawei nip6300_firmware v500r001c50
huawei ips_module_firmware v500r001c50
huawei secospace_usg6600_firmware v500r001c20
CVE-2020-9100 MEDIUM

Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,

Products Affected

Vendor Product Version
huawei hisuite *
CVE-2020-9101 LOW

There is an out-of-bounds write vulnerability in some products. An unauthenticated attacker crafts malformed packets with specific parameter and sends the packets to the affected products. Due to insufficient validation of packets, which may be exploited to cause the process reboot. Affected product versions include: IPS Module versions V500R005C00, V500R005C10; NGFW Module versions V500R005C00, V500R005C10; Secospace USG6300 versions V500R001C30, V500R001C60, V500R005C00, V500R005C10; Secospace USG6500 versions V500R001C30, V500R001C60, V500R005C00, V500R005C10; Secospace USG6600 versions V500R001C30, V500R001C60, V500R005C00, V500R005C10; USG9500 versions V500R001C30, V500R001C60, V500R005C00, V500R005C10

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c60
huawei ips_module_firmware v500r005c10
huawei secospace_usg6300_firmware v500r001c60
huawei usg9500_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c30
huawei usg9500_firmware v500r001c60
huawei secospace_usg6600_firmware v500r005c10
huawei secospace_usg6500_firmware v500r001c30
huawei usg9500_firmware v500r005c10
huawei secospace_usg6600_firmware v500r005c00
huawei ngfw_module_firmware v500r005c10
huawei secospace_usg6300_firmware v500r005c10
huawei usg9500_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c10
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-9102 LOW

There is a information leak vulnerability in some Huawei products, and it could allow a local attacker to get information. The vulnerability is due to the improper management of the username. An attacker with the ability to access the device and cause the username information leak. Affected product versions include: CloudEngine 12800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800; CloudEngine 5800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800; CloudEngine 6800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 versions V200R002C50SPC800, V200R003C00SPC810, V200R005C00SPC800, V200R005C10SPC800, V200R019C00SPC800

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r005c00spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r002c50spc800
huawei cloudengine_7800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r002c50spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r003c00spc810
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_6800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_5800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2020-9103 LOW

HUAWEI Mate 20 smartphones with 9.0.0.205(C00E205R2P1) have a logic error vulnerability. In a special scenario, the system does not properly process. As a result, attackers can perform a series of operations to successfully establish P2P connections that are rejected by the peer end. As a result, the availability of the device is affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_20_firmware 9.0.0.205(c00e205r2p1)
CVE-2020-9104 LOW

HUAWEI P30 smartphones with Versions earlier than 10.1.0.123(C431E22R2P5),Versions earlier than 10.1.0.123(C432E22R2P5),Versions earlier than 10.1.0.126(C10E7R5P1),Versions earlier than 10.1.0.126(C185E4R7P1),Versions earlier than 10.1.0.126(C461E7R3P1),Versions earlier than 10.1.0.126(C605E19R1P3),Versions earlier than 10.1.0.126(C636E7R3P4),Versions earlier than 10.1.0.128(C635E3R2P4),Versions earlier than 10.1.0.160(C00E160R2P11),Versions earlier than 10.1.0.160(C01E160R2P11) have a denial of service vulnerability. In specific scenario, due to the improper resource management and memory leak of some feature, the attacker could exploit this vulnerability to cause the device reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-9105 MEDIUM

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to access and modify the memory of the device by doing a series of operations. Successful exploit may cause the service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei taurus-an00b_firmware *
CVE-2020-9106 LOW

HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8) have a path traversal vulnerability. The system does not sufficiently validate certain pathname, successful exploit could allow the attacker access files and cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9107 HIGH

HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8) have an out-of-bounds read and write vulnerability. An unauthenticated attacker crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause the process reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9108 HIGH

HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8) have an out-of-bounds read and write vulnerability. An unauthenticated attacker crafts malformed message with specific parameter and sends the message to the affected products. Due to insufficient validation of message, which may be exploited to cause the process reboot.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9109 LOW

There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in certain specific scenario, the attacker need to gain certain information in the victim's smartphone to launch the attack, and successful exploit could cause information disclosure.Affected product versions include:HUAWEI Mate 20 versions earlier than 10.1.0.160(C00E160R3P8),versions earlier than 10.1.0.160(C01E160R2P8);HUAWEI Mate 20 X versions earlier than 10.1.0.160(C00E160R2P8),versions earlier than 10.1.0.160(C01E160R2P8);HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8);Laya-AL00EP versions earlier than 10.1.0.160(C786E160R3P8);Tony-AL00B versions earlier than 10.1.0.160(C00E160R2P11);Tony-TL00B versions earlier than 10.1.0.160(C01E160R2P11).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei p30_pro_firmware *
huawei tony-al00b_firmware *
huawei laya-al00ep_firmware *
huawei tony-tl00b_firmware *
huawei mate_20_x_firmware *
CVE-2020-9110 LOW

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have an information disclosure vulnerability. The device does not sufficiently validate the output of device in certain specific scenario, the attacker can gain information in the victim's smartphone to launch the attack, successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei taurus-an00b_firmware *
CVE-2020-9111 LOW

E6878-370 versions 10.0.3.1(H557SP27C233),10.0.3.1(H563SP21C233) and E6878-870 versions 10.0.3.1(H557SP27C233),10.0.3.1(H563SP11C233) have a denial of service vulnerability. The system does not properly check some events, an attacker could launch the events continually, successful exploit could cause reboot of the process.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei e6878-370_firmware 10.0.3.1(h557sp27c233)
huawei e6878-870_firmware 10.0.3.1(h557sp27c233)
huawei e6878-870_firmware 10.0.3.1(h563sp11c233)
huawei e6878-370_firmware 10.0.3.1(h563sp21c233)
CVE-2020-9112 MEDIUM

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a privilege elevation vulnerability. Due to lack of privilege restrictions on some of the business functions of the device. An attacker could exploit this vulnerability to access the protecting information, resulting in the elevation of the privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei taurus-an00b_firmware *
CVE-2020-9113 MEDIUM

HUAWEI Mate 20 versions earlier than 10.0.0.188(C00E74R3P8) have a buffer overflow vulnerability in the Bluetooth module. Due to insufficient input validation, an unauthenticated attacker may craft Bluetooth messages after successful paring, causing buffer overflow. Successful exploit may cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.0 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.1 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
CVE-2020-9114 HIGH

FusionCompute versions 6.3.0, 6.3.1, 6.5.0, 6.5.1 and 8.0.0 have a privilege escalation vulnerability. Due to improper privilege management, an attacker with common privilege may access some specific files and get the administrator privilege in the affected products. Successful exploit will cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
huawei fusioncompute 6.5.1
huawei fusioncompute 6.3.0
huawei fusioncompute 6.5.0
huawei fusioncompute 6.3.1
CVE-2020-9115 HIGH

ManageOne versions 6.5.1.1.B010, 6.5.1.1.B020, 6.5.1.1.B030, 6.5.1.1.B040, ,6.5.1.1.B050, 8.0.0 and 8.0.1 have a command injection vulnerability. An attacker with high privileges may exploit this vulnerability through some operations on the plug-in component. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject commands to the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,CWE-77,

Products Affected

Vendor Product Version
huawei manageone 8.0.0
huawei manageone 8.0.1
huawei manageone 6.5.1.1
huawei manageone 6.5.0
CVE-2020-9116 MEDIUM

Huawei FusionCompute versions 6.5.1 and 8.0.0 have a command injection vulnerability. An authenticated, remote attacker can craft specific request to exploit this vulnerability. Due to insufficient verification, this could be exploited to cause the attackers to obtain higher privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
huawei fusioncompute 6.5.1
CVE-2020-9117 MEDIUM

HUAWEI nova 4 versions earlier than 10.0.0.165(C01E34R2P4) and SydneyM-AL00 versions earlier than 10.0.0.165(C00E66R1P5) have an out-of-bounds read and write vulnerability. An attacker with specific permissions crafts malformed packet with specific parameter and sends the packet to the affected products. Due to insufficient validation of packet, which may be exploited to cause the information leakage or arbitrary code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei nova_4_firmware *
huawei sydneym-al00_firmware *
CVE-2020-9118 MEDIUM

There is an insufficient integrity check vulnerability in Huawei Sound X Product. The system does not check certain software package's integrity sufficiently. Successful exploit could allow an attacker to load a crafted software package to the device. Affected product versions include:AIS-BW80H-00 versions 9.0.3.1(H100SP13C00),9.0.3.1(H100SP18C00),9.0.3.1(H100SP3C00),9.0.3.1(H100SP9C00),9.0.3.2(H100SP1C00),9.0.3.2(H100SP2C00),9.0.3.2(H100SP5C00),9.0.3.2(H100SP8C00),9.0.3.3(H100SP1C00).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-354,

Products Affected

Vendor Product Version
huawei ais-bw80h-00_firmware 9.0.3.1(h100sp3c00)
huawei ais-bw80h-00_firmware 9.0.3.3(h100sp1c00)
huawei ais-bw80h-00_firmware 9.0.3.2(h100sp5c00)
huawei ais-bw80h-00_firmware 9.0.3.1(h100sp18c00)
huawei ais-bw80h-00_firmware 9.0.3.2(h100sp2c00)
huawei ais-bw80h-00_firmware 9.0.3.2(h100sp8c00)
huawei ais-bw80h-00_firmware 9.0.3.1(h100sp9c00)
huawei ais-bw80h-00_firmware 9.0.3.1(h100sp13c00)
huawei ais-bw80h-00_firmware 9.0.3.2(h100sp1c00)
CVE-2020-9119 MEDIUM

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.2 MEDIUM CVSS:3.1/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p40_pro_firmware *
huawei p40_firmware *
huawei mate_30_firmware *
huawei mate_30_pro_firmware *
huawei mate_10_firmware *
CVE-2020-9120 MEDIUM

CloudEngine 1800V versions V100R019C10SPC500 has a resource management error vulnerability. Remote unauthorized attackers could send specific types of messages to the device, resulting in the message received by the system can't be forwarded normally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei cloudengine_1800v v100r019c10spc500
CVE-2020-9122 LOW

Some Huawei products have an insufficient input verification vulnerability. Attackers can exploit this vulnerability in the LAN to cause service abnormal on affected devices.Affected product versions include:HiRouter-CD30-10 version 10.0.2.5;HiRouter-CT31-10 version 10.0.2.20;WS5200-12 version 10.0.1.9;WS5281-10 version 10.0.5.10;WS5800-10 version 10.0.3.25;WS7100-10 version 10.0.5.21;WS7200-10 version 10.0.5.21.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei ws7100-10_firmware *
huawei ws7200-10_firmware *
huawei ws5281-10_firmware *
huawei ws5200-12_firmware *
huawei hirouter-ct31-10_firmware *
huawei hirouter-cd30-10_firmware *
huawei ws5800-10_firmware *
CVE-2020-9123 MEDIUM

HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8) and versions earlier than 10.1.0.160(C01E160R2P8) have a buffer overflow vulnerability. An attacker induces users to install malicious applications and sends specially constructed packets to affected devices after obtaining the root permission. Successful exploit may cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9124 MEDIUM

There is a memory leak vulnerability in some versions of Huawei CloudEngine product. An unauthenticated, remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause memory leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r005c00spc800
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r002c50spc800
huawei cloudengine_7800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_5800_firmware v200r002c50spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_5800_firmware v200r003c00spc810
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_6800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_6800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2020-9125 MEDIUM

There is an out-of-bound read vulnerability in huawei smartphone Mate 30 versions earlier than 10.1.0.156 (C00E155R7P2). An attacker with specific permission can exploit this vulnerability by sending crafted packet with specific parameter to the target device. Due to insufficient validation of the parameter, successful exploit can cause the device to behave abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
CVE-2020-9127 MEDIUM

Some Huawei products have a command injection vulnerability. Due to insufficient input validation, an attacker with high privilege may inject some malicious codes in some files of the affected products. Successful exploit may cause command injection.Affected product versions include:NIP6300 versions V500R001C30,V500R001C60;NIP6600 versions V500R001C30,V500R001C60;Secospace USG6300 versions V500R001C30,V500R001C60;Secospace USG6500 versions V500R001C30,V500R001C60;Secospace USG6600 versions V500R001C30,V500R001C60;USG9500 versions V500R001C30,V500R001C60.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-77,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c60
huawei secospace_usg6300_firmware v500r001c60
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c30
huawei usg9500_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c60
CVE-2020-9128 LOW

FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. Attackers with high permissions can exploit this vulnerability to cause information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-326,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9129 MEDIUM

HUAWEI Mate 30 versions earlier than 10.1.0.159(C00E159R7P2) have a vulnerability of improper buffer operation. Due to improper restrictions, local attackers with high privileges can exploit the vulnerability to cause system heap overflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
CVE-2020-9137 MEDIUM

There is a privilege escalation vulnerability in some versions of CloudEngine 12800,CloudEngine 5800,CloudEngine 6800 and CloudEngine 7800. Due to insufficient input validation, a local attacker with high privilege may execute some specially crafted scripts in the affected products. Successful exploit will cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r005c00spc800
huawei cloudengine_5800_firmware v200r019c10spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_7800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r019c10spc800
huawei cloudengine_6800_firmware v200r019c10spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r002c50spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r019c10spc800
huawei cloudengine_5800_firmware v200r003c00spc810
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_6800_firmware v200r002c50spc800
huawei cloudengine_5800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2020-9138 MEDIUM

There is a heap-based buffer overflow vulnerability in some Huawei Smartphone, Successful exploit of this vulnerability can cause process exceptions during updating.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9139 MEDIUM

There is a improper input validation vulnerability in some Huawei Smartphone.Successful exploit of this vulnerability can cause memory access errors and denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9140 HIGH

There is a vulnerability with buffer access with incorrect length value in some Huawei Smartphone.Unauthorized users may trigger code execution when a buffer overflow occurs.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9141 MEDIUM

There is a improper privilege management vulnerability in some Huawei smartphone. Successful exploitation of this vulnerability can cause information disclosure and malfunctions due to insufficient verification of data authenticity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-345,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei magic_ui 3.1.0
CVE-2020-9142 MEDIUM

There is a heap base buffer overflow vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability can cause heap overflow and memory overwriting when the system incorrectly processes the update file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9143 MEDIUM

There is a missing authentication vulnerability in some Huawei smartphone.Successful exploitation of this vulnerability may lead to low-sensitive information exposure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9144 HIGH

There is a heap overflow vulnerability in some Huawei smartphone, attackers can exploit this vulnerability to cause heap overflows due to improper restriction of operations within the bounds of a memory buffer.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9145 MEDIUM

There is an Out-of-bounds Write vulnerability in some Huawei smartphone. Successful exploitation of this vulnerability may cause out-of-bounds access to the physical memory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9146 LOW

A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to cause memory leakage and doS attacks by carefully constructing attack scenarios.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9147 MEDIUM

A memory buffer error vulnerability exists in a component interface of Huawei Smartphone. Local attackers may exploit this vulnerability by carefully constructing attack scenarios to cause out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9148 LOW

An application bypass mechanism vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to delete user SMS messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9149 LOW

An application error verification vulnerability exists in a component interface of Huawei Smartphone. Local attackers can exploit this vulnerability to modify and delete user SMS messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2020-9158 MEDIUM

There is a Missing Cryptographic Step vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause DoS of Samgr.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 8.2
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 8.0
huawei magic_ui 3.0.0
huawei emui 11.0.0
CVE-2020-9199 HIGH

B2368-22 V100R001C00;B2368-57 V100R001C00;B2368-66 V100R001C00 have a command injection vulnerability. An attacker with high privileges may exploit this vulnerability through some operations on the LAN. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject commands to the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei b2368-22_firmware v100r001c00
huawei b2368-66_firmware v100r001c00
huawei b2368-57_firmware v100r001c00
CVE-2020-9200 HIGH

There has a CSV injection vulnerability in iManager NetEco 6000 versions V600R021C00. An attacker with common privilege may exploit this vulnerability through some operations to inject the CSV files. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject CSV files to the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-1236,

Products Affected

Vendor Product Version
huawei imanager_neteco_6000 v600r021c00
CVE-2020-9201 LOW

There is an out-of-bounds read vulnerability in some versions of NIP6800, Secospace USG6600 and USG9500. The software reads data past the end of the intended buffer when parsing DHCP messages including crafted parameter. Successful exploit could cause certain service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00
huawei usg9500_firmware v500r001c60spc500
huawei nip6800_firmware v500r005c00
huawei nip6800_firmware v500r001c30
huawei usg9500_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r001c30spc600
CVE-2020-9202 LOW

There is an information disclosure vulnerability in TE Mobile software versions V600R006C10,V600R006C10SPC100. Due to the improper storage of some information in certain specific scenario, the attacker can gain information in the victim's device to launch the attack, successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-922,

Products Affected

Vendor Product Version
huawei te_mobile v600r006c10
huawei te_mobile v600r006c10spc100
CVE-2020-9203 LOW

There is a resource management errors vulnerability in Huawei P30. Local attackers construct broadcast message for some application, causing this application to send this broadcast message and impact the customer's use experience.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-9205 MEDIUM

There has a CSV injection vulnerability in ManageOne 8.0.1. An attacker with common privilege may exploit this vulnerability through some operations to inject the CSV files. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject CSV files to the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-1236,

Products Affected

Vendor Product Version
huawei manageone 8.0.1
CVE-2020-9206 MEDIUM

The eUDC660 product has a resource management vulnerability. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource management of the device, as a result, the key file can be obtained and data can be decrypted, affecting confidentiality, integrity, and availability of the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei eudc660_firmware v100r005c00
CVE-2020-9207 MEDIUM

There is an improper authentication vulnerability in some verisons of Huawei CloudEngine product. A module does not verify the input file properly. Attackers can exploit this vulnerability by crafting malicious files to bypass current verification mechanism. This can compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_5800_firmware v200r019c00spc800
CVE-2020-9208 MEDIUM

There is an information leak vulnerability in iManager NetEco 6000 versions V600R021C00. A module is lack of authentication. Attackers without access to the module can exploit this vulnerability to obtain extra information, leading to information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei imanager_neteco_6000 v600r021c00
CVE-2020-9209 MEDIUM

There is a privilege escalation vulnerability in SMC2.0 product. Some files in a directory of a module are located improperly. It does not apply the directory limitation. Attackers can exploit this vulnerability by crafting malicious file to launch privilege escalation. This can compromise normal service of affected products.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-862,

Products Affected

Vendor Product Version
huawei smc2.0_firmware v600r006c10spc601
huawei smc2.0_firmware v600r006c10spca00
huawei smc2.0_firmware v600r006c10spc602
huawei smc2.0_firmware v600r019c10
huawei smc2.0_firmware v600r006c10spc600
huawei smc2.0_firmware v600r006c10spcb00
huawei smc2.0_firmware v600r006c00spc700
huawei smc2.0_firmware v600r006c10spc500
huawei smc2.0_firmware v600r006c10spc700
huawei smc2.0_firmware v600r006c10spc800
huawei smc2.0_firmware v600r006c10spcc00
huawei smc2.0_firmware v600r019c00
huawei smc2.0_firmware v600r006c10spcd00
huawei smc2.0_firmware v600r006c10spce00
huawei smc2.0_firmware v600r006c00spc800
CVE-2020-9210

There is an insufficient integrity vulnerability in Huawei products. A module does not perform sufficient integrity check in a specific scenario. Attackers can exploit the vulnerability by physically install malware. This could compromise normal service of the affected device. (Vulnerability ID: HWPSIRT-2020-00145) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9210.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

Products Affected

Vendor Product Version
huawei myna_firmware 9.0.1.11(h100sp8c00)
CVE-2020-9211

There is an out-of-bound read and write vulnerability in Huawei smartphone. A module dose not verify the input sufficiently. Attackers can exploit this vulnerability by modifying some configuration to cause out-of-bound read and write, causing denial of service. (Vulnerability ID: HWPSIRT-2020-05103) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9211.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9
psirt@huawei.com 6.4 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H 0.5 5.9

Products Affected

Vendor Product Version
huawei mate_30_firmware 10.1.0.126(c00e125r5p3)
CVE-2020-9212 MEDIUM

There is a vulnerability in some version of USG9500 that the device improperly handles the information when a user logs in to device. The attacker can exploit the vulnerability to perform some operation and can get information and cause information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r005c00spc200
huawei usg9500_firmware v500r005c20spc600
huawei usg9500_firmware v500r005c20spc500
huawei usg9500_firmware v500r005c20spc300
huawei usg9500_firmware v500r005c00spc100
CVE-2020-9213 MEDIUM

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft many specific packets. Successful exploit may cause some services to be abnormal. Affected products include some versions of NGFW Module, NIP6300, NIP6600, NIP6800, Secospace USG6300, Secospace USG6500, Secospace USG6600 and SG9500.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei nip6300_firmware v500r005c00
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c60
huawei nip6600_firmware v500r001c60
huawei nip6800_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c60
huawei usg9500_firmware v500r001c30
huawei secospace_usg6300_firmware v500r001c30
huawei usg9500_firmware v500r001c60
huawei nip6300_firmware v500r001c60
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei secospace_usg6600_firmware v500r005c00
huawei nip6600_firmware v500r005c00
huawei nip6800_firmware v500r001c60
huawei usg9500_firmware v500r005c00
huawei secospace_usg6500_firmware v500r001c60
huawei ngfw_module_firmware v500r005c00
huawei secospace_usg6500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r005c00
CVE-2020-9222

There is a privilege escalation vulnerability in Huawei FusionCompute product. Due to insufficient verification on specific files that need to be deserialized, local attackers can exploit this vulnerability to elevate permissions. (Vulnerability ID: HWPSIRT-2020-05241) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9222.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.0 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
huawei fusioncompute 6.5.1
huawei fusioncompute 6.3.0
huawei fusioncompute 6.5.0
huawei fusioncompute 6.3.1
CVE-2020-9223 MEDIUM

There is a denial of service vulnerability in some Huawei smartphones. Due to the improper processing of received abnormal messages, remote attackers may exploit this vulnerability to cause a denial of service (DoS) on the specific module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei princeton-al10d_firmware *
huawei honor_20_pro_firmware *
huawei yale-l61a_firmware *
huawei yale-l21a_firmware *
CVE-2020-9225 MEDIUM

FusionSphere OpenStack 6.5.1 have an improper permissions management vulnerability. The software does not correctly perform a privilege assignment when an actor attempts to perform an action. Successful exploit could allow certain user to do certain operations beyond its privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei fusionsphere_openstack 6.5.1
CVE-2020-9226 MEDIUM

HUAWEI P30 with versions earlier than 10.1.0.135(C00E135R2P11) have an improper signature verification vulnerability. The system does not improper check signature of specific software package, an attacker may exploit this vulnerability to load a crafted software package to the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-9227 MEDIUM

Huawei Smart Phones Moana-AL00B with versions earlier than 10.1.0.166 have a missing initialization of resource vulnerability. An attacker tricks the user into installing then running a crafted application. Due to improper initialization of specific parameters, successful exploit of this vulnerability may cause device exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-909,

Products Affected

Vendor Product Version
huawei moana-al00b_firmware *
CVE-2020-9228 MEDIUM

FusionCompute 8.0.0 has an information disclosure vulnerability. Due to the properly protection of certain information, attackers may exploit this vulnerability to obtain certain information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9229 LOW

FusionCompute 8.0.0 has an information disclosure vulnerability. Due to the properly protection of certain information, attackers may exploit this vulnerability to obtain certain information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9230 LOW

WS5800-10 version 10.0.3.25 has a denial of service vulnerability. Due to improper verification of specific message, an attacker may exploit this vulnerability to cause specific function to become abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei ws5800-10_firmware 10.0.3.25
CVE-2020-9233 MEDIUM

FusionCompute 8.0.0 have an insufficient authentication vulnerability. An attacker may exploit the vulnerability to delete some files and cause some services abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9235 LOW

Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E3R5P1),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.212(C432E10R3P4),Versions earlier than 10.1.0.213(C636E3R4P3),Versions earlier than 10.1.0.214(C10E5R4P3),Versions earlier than 10.1.0.214(C185E3R3P3);Versions earlier than 10.1.0.212(C00E210R5P1);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C01E160R2P11);Versions earlier than 10.1.0.160(C00E160R2P11);Versions earlier than 10.1.0.160(C00E160R8P12);Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C636E3R3P1);Versions earlier than 10.1.0.225(C431E3R1P2),Versions earlier than 10.1.0.225(C432E3R1P2) contain an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerability to obtain some information. This can lead to information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei yale-al00a_firmware *
huawei princeton-al10d_firmware *
huawei honor_view_20_firmware *
huawei honor_20_pro_firmware *
huawei tony-al00b_firmware *
huawei yale-l61a_firmware *
huawei oxfords-an00a_firmware *
huawei yale-l21a_firmware *
huawei princeton-al10b_firmware *
huawei princeton-tl10c_firmware *
CVE-2020-9236

There is an improper interface design vulnerability in Huawei product. A module interface of the impated product does not deal with some operations properly. Attackers can exploit this vulnerability to perform malicious operatation to compromise module service. (Vulnerability ID: HWPSIRT-2020-05010) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9236.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9237 MEDIUM

Huawei smartphone Taurus-AL00B with versions earlier than 10.1.0.126(C00E125R5P3) have a user after free vulnerability. A module is lack of lock protection. Attackers can exploit this vulnerability by launching specific request. This could compromise normal service of the affected device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei taurus-al00b_firmware *
CVE-2020-9238 LOW

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a buffer overflow vulnerability. A function in a module does not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei taurus-an00b_firmware *
CVE-2020-9239 LOW

Huawei smartphones BLA-A09 versions 8.0.0.123(C212),versions earlier than 8.0.0.123(C567),versions earlier than 8.0.0.123(C797);BLA-TL00B versions earlier than 8.1.0.326(C01);Berkeley-L09 versions earlier than 8.0.0.163(C10),versions earlier than 8.0.0.163(C432),Versions earlier than 8.0.0.163(C636),Versions earlier than 8.0.0.172(C10);Duke-L09 versions Duke-L09C10B187, versions Duke-L09C432B189, versions Duke-L09C636B189;HUAWEI P20 versions earlier than 8.0.1.16(C00);HUAWEI P20 Pro versions earlier than 8.1.0.152(C00);Jimmy-AL00A versions earlier than Jimmy-AL00AC00B172;LON-L29D versions LON-L29DC721B192;NEO-AL00D versions earlier than 8.1.0.172(C786);Stanford-AL00 versions Stanford-AL00C00B123;Toronto-AL00 versions earlier than Toronto-AL00AC00B225;Toronto-AL00A versions earlier than Toronto-AL00AC00B225;Toronto-TL10 versions earlier than Toronto-TL10C01B225 have an information vulnerability. A module has a design error that is lack of control of input. Attackers can exploit this vulnerab

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei duke-l09_firmware duke-l09c636b189
huawei duke-l09_firmware duke-l09c432b189
huawei neo-al00d_firmware *
huawei toronto-al00a_firmware *
huawei lon-l29d_firmware lon-l29dc721b192
huawei jimmy-al00a_firmware *
huawei stanford-al00_firmware stanford-al00c00b123
huawei p20_pro_firmware *
huawei bla-a09_firmware 8.0.0.123(c212)
huawei duke-l09_firmware duke-l09c10b187
huawei berkeley-l09_firmware *
huawei toronto-tl10_firmware *
huawei bla-tl00b_firmware *
huawei bla-a09_firmware *
huawei p20_firmware *
huawei toronto-al00_firmware *
CVE-2020-9240 LOW

Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have a buffer overflow vulnerability. A function in a module does not verify inputs sufficiently. Attackers can exploit this vulnerability by sending specific request. This could compromise normal service of the affected device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei taurus-an00b_firmware *
CVE-2020-9241 MEDIUM

Huawei 5G Mobile WiFi E6878-370 with versions of 10.0.3.1(H563SP1C00),10.0.3.1(H563SP21C233) have an improper authorization vulnerability. The device does not restrict certain data received from WAN port. Successful exploit could allow an attacker at WAN side to manage certain service of the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.0 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H 2.2 4.7

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei e6878-370_firmware 10.0.3.1(h563sp1c00)
huawei e6878-370_firmware 10.0.3.1(h563sp21c233)
CVE-2020-9242 MEDIUM

FusionCompute 8.0.0 have a command injection vulnerability. The software does not sufficiently validate certain parameters post from user, successful exploit could allow an authenticated attacker to launch a command injection attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9243 MEDIUM

HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a denial of service vulnerability. The system does not properly limit the depth of recursion, an attacker should trick the user installing and execute a malicious application. Successful exploit could cause a denial of service condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-674,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
CVE-2020-9244 MEDIUM

HUAWEI Mate 20 versions Versions earlier than 10.1.0.160(C00E160R3P8);HUAWEI Mate 20 Pro versions Versions earlier than 10.1.0.270(C431E7R1P5),Versions earlier than 10.1.0.270(C635E3R1P5),Versions earlier than 10.1.0.273(C636E7R2P4);HUAWEI Mate 20 X versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions Versions earlier than 10.1.0.160(C00E160R2P8);HUAWEI Mate 20 RS versions Versions earlier than 10.1.0.160(C786E160R3P8);HonorMagic2 versions Versions earlier than 10.0.0.187(C00E61R2P11);Honor20 versions Versions earlier than 10.0.0.175(C00E58R4P11);Honor20 PRO versions Versions earlier than 10.0.0.194(C00E62R8P12);HonorMagic2 versions Versions earlier than 10.0.0.187(C00E61R2P11);HonorV20 versions Versions earlier than 10.0.0.188(C00E62R2P11) have an improper authentication vulnerability. The system does not properly sign certain encrypted file, the attacker should gain the key used to encrypt the file, successful exploit could cause certain file be forged

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei honor_v20_firmware *
huawei p30_pro_firmware *
huawei p30_firmware *
huawei honor_20_pro_firmware *
huawei mate_20_pro_firmware *
huawei honor_magic_2_firmware *
huawei honor_20_firmware *
huawei mate_20_rs_firmware *
huawei mate_20_x_firmware *
CVE-2020-9245 MEDIUM

HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11);HUAWEI P30 Pro versions Versions earlier than 10.1.0.160(C00E160R2P8) have a denial of service vulnerability. Certain system configuration can be modified because of improper authorization. The attacker could trick the user installing and executing a malicious application, successful exploit could cause a denial of service condition of PHONE function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2020-9246 MEDIUM

FusionCompute 8.0.0 has an information leak vulnerability. A module does not launch strict access control and information protection. Attackers with low privilege can get some extra information. This can lead to information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9247 MEDIUM

There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed from user that would cause buffer overflow. The attacker should trick the user into installing and running a malicious application with a high privilege, successful exploit may cause code execution. Affected product include Huawei HONOR 20 PRO, Mate 20, Mate 20 Pro, Mate 20 X, P30, P30 Pro, Hima-L29C, Laya-AL00EP, Princeton-AL10B, Tony-AL00B, Yale-L61A, Yale-TL00B and YaleP-AL10B.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,CWE-120,

Products Affected

Vendor Product Version
huawei p30_firmware *
huawei honor_20_pro_firmware *
huawei tony-al00b_firmware *
huawei yalep-al10b_firmware *
huawei yale-l61a_firmware *
huawei mate_20_pro_firmware *
huawei laya-al00ep_firmware *
huawei princeton-al10b_firmware *
huawei hima-l29c_firmware *
huawei p30_firmware 9.1.0.272(c635e4r2p2)
huawei mate_20_firmware *
huawei p30_pro_firmware *
huawei yale-tl00b_firmware *
huawei mate_20_x_firmware *
CVE-2020-9248 MEDIUM

Huawei FusionComput 8.0.0 have an improper authorization vulnerability. A module does not verify some input correctly and authorizes files with incorrect access. Attackers can exploit this vulnerability to launch privilege escalation attack. This can compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2020-9249 LOW

HUAWEI P30 smartphones with versions earlier than 10.1.0.160(C00E160R2P11) have a denial of service vulnerability. A module does not deal with mal-crafted messages and it leads to memory leak. Attackers can exploit this vulnerability to make the device denial of service.Affected product versions include: HUAWEI P30 versions Versions earlier than 10.1.0.160(C00E160R2P11).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-9250

There is an insufficient authentication vulnerability in some Huawei smart phone. An unauthenticated, local attacker can crafts software package to exploit this vulnerability. Due to insufficient verification, successful exploitation may impact the service. (Vulnerability ID: HWPSIRT-2019-12302) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9250.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei mate_20_pro_firmware 10.1.0.160(c00e160r3p8)
CVE-2020-9251 LOW

HUAWEI Mate 20 smartphones with versions earlier than 10.1.0.160(C00E160R2P11) have an improper authorization vulnerability. The software does not properly restrict certain operation in certain scenario, the attacker should do certain configuration before the user turns on student mode function. Successful exploit could allow the attacker to bypass the limit of student mode function. Affected product versions include: HUAWEI Mate 20 versions Versions earlier than 10.1.0.160(C00E160R3P8).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.4 LOW CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 0.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-9252 LOW

HUAWEI Mate 20 versions earlier than 10.1.0.160(C00E160R3P8), HUAWEI Mate 20 X versions earlier than 10.1.0.135(C00E135R2P8), HUAWEI Mate 20 RS versions earlier than 10.1.0.160(C786E160R3P8), and Honor Magic2 smartphones versions earlier than 10.1.0.160(C00E160R2P11) have a path traversal vulnerability. The system does not sufficiently validate certain pathname from certain process, successful exploit could allow the attacker write files to a crafted path.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.3 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N 0.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei mate_20_firmware *
huawei magic2_firmware *
huawei mate_20_rs_firmware *
huawei mate_20_x_firmware *
CVE-2020-9253

There is a stack overflow vulnerability in some Huawei smart phone. An attacker can craft specific packet to exploit this vulnerability. Due to insufficient verification, this could be exploited to tamper with the information to affect the availability. (Vulnerability ID: HWPSIRT-2019-11030) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2020-9253.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6
psirt@huawei.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
huawei lion-al00c_firmware *
CVE-2020-9254 MEDIUM

HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E19R2P5patch02), versions earlier than 10.1.0.126(C10E11R5P1), and versions earlier than 10.1.0.160(C00E160R2P8) have a logic check error vulnerability. A logic error occurs when the software checking the size of certain parameter, the attacker should trick the user into installing a malicious application, successful exploit may cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9255 MEDIUM

Huawei Honor 10 smartphones with versions earlier than 10.0.0.178(C00E178R1P4) have a denial of service vulnerability. Certain service in the system does not sufficiently validate certain parameter which is received, the attacker should trick the user into installing a malicious application, successful exploit could cause a denial of service condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei honor_10_firmware *
CVE-2020-9256 MEDIUM

Huawei Mate 30 Pro smartphones with versions earlier than 10.1.0.150(C00E136R5P3) have an improper authorization vulnerability. The system does not properly restrict the use of system service by applications, the attacker should trick the user into installing a malicious application, successful exploit could cause a denial of audio service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_30_pro_firmware *
CVE-2020-9257 MEDIUM

HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E19R2P5patch02), versions earlier than 10.1.0.126(C10E11R5P1), and versions earlier than 10.1.0.160(C00E160R2P8) have a buffer overflow vulnerability. The software access data past the end, or before the beginning, of the intended buffer when handling certain operations of certificate, the attacker should trick the user into installing a malicious application, successful exploit may cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
CVE-2020-9258 LOW

HUAWEI P30 smartphone with versions earlier than 10.1.0.135(C00E135R2P11) have an improper input verification vulnerability. An attribution in a module is not set correctly and some verification is lacked. Attackers with local access can exploit this vulnerability by injecting malicious fragment. This may lead to user information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2020-9259 MEDIUM

Huawei Honor V30 smartphones with versions earlier than 10.1.0.212(C00E210R5P1) have an improper authentication vulnerability. The system does not sufficiently validate certain parameter passed from the bottom level, the attacker should trick the user into installing a malicious application and control the bottom level, successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei honor_v30_firmware *
CVE-2020-9260 LOW

HUAWEI P30 and HUAWEI P30 Pro smartphones with versions earlier than 10.1.0.123(C432E22R2P5) and versions earlier than 10.1.0.160(C00E160R2P8) have an information disclosure vulnerability. Certain WI-FI function's default configuration in the system seems insecure, an attacker should craft a WI-FI hotspot to launch the attack. Successful exploit could cause information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_pro_firmware *
huawei p30_firmware *
CVE-2020-9261 MEDIUM

HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a type confusion vulnerability. The system does not properly check and transform the type of certain variable, the attacker tricks the user into installing then running a crafted application, successful exploit could cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-843,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
CVE-2020-9262 MEDIUM

HUAWEI Mate 30 with versions earlier than 10.1.0.150(C00E136R5P3) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the attacker should trick the user into running a crafted application with high privilege, successful exploit could cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei mate_30_firmware *
CVE-2020-9263 MEDIUM

HUAWEI Mate 30 versions earlier than 10.1.0.150(C00E136R5P3) and HUAWEI P30 version earlier than 10.1.0.160(C00E160R2P11) have a use after free vulnerability. There is a condition exists that the system would reference memory after it has been freed, the attacker should trick the user into running a crafted application with common privilege, successful exploit could cause code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei p30_firmware *
huawei mate_30_firmware *
CVE-2021-22292 HIGH

There is a denial of service (DoS) vulnerability in eCNS280 versions V100R005C00, V100R005C10. Due to a design defect, remote unauthorized attackers send a large number of specific messages to affected devices, causing system resource exhaustion and web application DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei ecns280_firmware v100r005c00
huawei ecns280_firmware v100r005c10
CVE-2021-22293 MEDIUM

Some Huawei products have an inconsistent interpretation of HTTP requests vulnerability. Attackers can exploit this vulnerability to cause information leak. Affected product versions include: CampusInsight versions V100R019C10; ManageOne versions 6.5.1.1, 6.5.1.SPC100, 6.5.1.SPC200, 6.5.1RC1, 6.5.1RC2, 8.0.RC2. Affected product versions include: Taurus-AL00A versions 10.0.0.1(C00E1R1P1).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-444,

Products Affected

Vendor Product Version
huawei manageone 8.0.0
huawei taurus-al00a_firmware 10.0.0.1(c00e1r1p1)
huawei manageone 6.5.1.1
huawei campusinsight v100r019c10
CVE-2021-22294 LOW

A component API of the HarmonyOS 2.0 has a permission bypass vulnerability. Local attackers may exploit this vulnerability to issue commands repeatedly, exhausting system service resources.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22295 LOW

A component of the HarmonyOS has a permission bypass vulnerability. Local attackers may exploit this vulnerability to cause the device to hang due to the page error OsVmPageFaultHandler.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22296 MEDIUM

A component of HarmonyOS 2.0 has a DoS vulnerability. Local attackers may exploit this vulnerability to mount a file system to the target device, causing DoS of the file system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22298 MEDIUM

There is a logic vulnerability in Huawei Gauss100 OLTP Product. An attacker with certain permissions could perform specific SQL statement to exploit this vulnerability. Due to insufficient security design, successful exploit can cause service abnormal. Affected product versions include: ManageOne versions 6.5.1.1.B020, 6.5.1.1.B030, 6.5.1.1.B040, 6.5.1.SPC100.B050, 6.5.1.SPC101.B010, 6.5.1.SPC101.B040, 6.5.1.SPC200, 6.5.1.SPC200.B010, 6.5.1.SPC200.B030, 6.5.1.SPC200.B040, 6.5.1.SPC200.B050, 6.5.1.SPC200.B060, 6.5.1.SPC200.B070, 6.5.1RC1.B070, 6.5.1RC1.B080, 6.5.1RC2.B040, 6.5.1RC2.B050, 6.5.1RC2.B060, 6.5.1RC2.B070, 6.5.1RC2.B080, 6.5.1RC2.B090.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei manageone 8.0.0
huawei manageone 6.5.1.1
CVE-2021-22299 MEDIUM

There is a local privilege escalation vulnerability in some Huawei products. A local, authenticated attacker could craft specific commands to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege. Affected product versions include: ManageOne versions 6.5.0,6.5.0.SPC100.B210,6.5.1.1.B010,6.5.1.1.B020,6.5.1.1.B030,6.5.1.1.B040,6.5.1.SPC100.B050,6.5.1.SPC101.B010,6.5.1.SPC101.B040,6.5.1.SPC200,6.5.1.SPC200.B010,6.5.1.SPC200.B030,6.5.1.SPC200.B040,6.5.1.SPC200.B050,6.5.1.SPC200.B060,6.5.1.SPC200.B070,6.5.1RC1.B060,6.5.1RC2.B020,6.5.1RC2.B030,6.5.1RC2.B040,6.5.1RC2.B050,6.5.1RC2.B060,6.5.1RC2.B070,6.5.1RC2.B080,6.5.1RC2.B090,6.5.RC2.B050,8.0.0,8.0.0-LCND81,8.0.0.SPC100,8.0.1,8.0.RC2,8.0.RC3,8.0.RC3.B041,8.0.RC3.SPC100; NFV_FusionSphere versions 6.5.1.SPC23,8.0.0.SPC12; SMC2.0 versions V600R019C00,V600R019C10; iMaster MAE-M versions MAE-TOOL(FusionSphereBasicTemplate_Euler_X86)V100R020C10SPC220.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei manageone 8.0.0
huawei manageone 8.0.1
huawei smc2.0_firmware v600r019c00
huawei imaster_mae-m v100r020c10spc220
huawei network_functions_virtualization_fusionsphere 6.5.1
huawei manageone 6.5.1.1
huawei manageone 6.5.0
huawei smc2.0_firmware v600r019c10
huawei manageone 6.5.1
CVE-2021-22300 LOW

There is an information leak vulnerability in eCNS280_TD versions V100R005C00 and V100R005C10. A command does not have timeout exit mechanism. Temporary file contains sensitive information. This allows attackers to obtain information by inter-process access that requires other methods.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N 0.5 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-312,

Products Affected

Vendor Product Version
huawei ecns280_td_firmware v100r005c00
huawei ecns280_td_firmware v100r005c10
CVE-2021-22301 MEDIUM

Mate 30 10.0.0.203(C00E201R7P2) have a buffer overflow vulnerability. After obtaining the root permission, an attacker can exploit the vulnerability to cause buffer overflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei mate_30_firmware 10.0.0.203(c00e201r7p2)
CVE-2021-22302 LOW

There is an out-of-bound read vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). A module does not verify the some input. Attackers can exploit this vulnerability by sending malicious input through specific app. This could cause out-of-bound, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei taurus-al00a_firmware 10.0.0.1(c00e1r1p1)
CVE-2021-22303 MEDIUM

There is a pointer double free vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). There is a lack of muti-thread protection when a function is called. Attackers can exploit this vulnerability by performing malicious operation to cause pointer double free. This may lead to module crash, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei taurus-al00a_firmware 10.0.0.1(c00e1r1p1)
CVE-2021-22304 LOW

There is a use after free vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). A module may refer to some memory after it has been freed while dealing with some messages. Attackers can exploit this vulnerability by sending specific message to the affected module. This may lead to module crash, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei taurus-al00a_firmware 10.0.0.1(c00e1r1p1)
CVE-2021-22305 LOW

There is a buffer overflow vulnerability in Mate 30 10.1.0.126(C00E125R5P3). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause buffer overflow, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei mate_30_firmware 10.1.0.126(c00e125r5p3)
CVE-2021-22306 LOW

There is an out-of-bound read vulnerability in Mate 30 10.0.0.182(C00E180R6P2). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause out-of-bound, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei mate_30_firmware 10.0.0.182(c00e180r6p2)
CVE-2021-22307 LOW

There is a weak algorithm vulnerability in Mate 3010.0.0.203(C00E201R7P2). The protection is insufficient for the modules that should be protected. Local attackers can exploit this vulnerability to affect the integrity of certain module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_30_firmware 10.0.0.203(c00e201r7p2)
CVE-2021-22308 LOW

There is a Business Logic Errors vulnerability in Huawei Smartphone. The malicious apps installed on the device can keep taking screenshots in the background. This issue does not cause system errors, but may cause personal information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22309 MEDIUM

There is insecure algorithm vulnerability in Huawei products. A module uses less random input in a secure mechanism. Attackers can exploit this vulnerability by brute forcing to obtain sensitive message. This can lead to information leak. Affected product versions include:USG9500 versions V500R001C30SPC200, V500R001C60SPC500,V500R005C00SPC200;USG9520 versions V500R005C00;USG9560 versions V500R005C00;USG9580 versions V500R005C00.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-330,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei usg9500_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00spc200
huawei usg9560_firmware v500r005c00
huawei usg9520_firmware v500r005c00
huawei usg9580_firmware v500r005c00
CVE-2021-22310 LOW

There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause an information leak. Affected product versions include: NIP6300 versions V500R001C00,V500R001C20,V500R001C30;NIP6600 versions V500R001C00,V500R001C20,V500R001C30;Secospace USG6300 versions V500R001C00,V500R001C20,V500R001C30;Secospace USG6500 versions V500R001C00,V500R001C20,V500R001C30;Secospace USG6600 versions V500R001C00,V500R001C20,V500R001C30,V500R001C50,V500R001C60,V500R001C80;USG9500 versions V500R005C00,V500R005C10.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-532,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c50
huawei nip6300_firmware v500r001c30
huawei secospace_usg6600_firmware v500r001c60
huawei secospace_usg6600_firmware v500r001c00
huawei secospace_usg6300_firmware v500r001c20
huawei secospace_usg6300_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c20
huawei nip6300_firmware v500r001c20
huawei secospace_usg6500_firmware v500r001c00
huawei nip6600_firmware v500r001c30
huawei nip6300_firmware v500r001c00
huawei nip6600_firmware v500r001c00
huawei secospace_usg6500_firmware v500r001c30
huawei usg9500_firmware v500r005c10
huawei usg9500_firmware v500r005c00
huawei secospace_usg6300_firmware v500r001c00
huawei secospace_usg6600_firmware v500r001c80
huawei nip6600_firmware v500r001c20
huawei secospace_usg6600_firmware v500r001c20
CVE-2021-22311 MEDIUM

There is an improper permission assignment vulnerability in Huawei ManageOne product. Due to improper security hardening, the process can run with a higher privilege. Successful exploit could allow certain users to do certain operations with improper permissions. Affected product versions include: ManageOne versions 8.0.0, 8.0.1.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei manageone 8.0.0
huawei manageone 8.0.1
CVE-2021-22312 MEDIUM

There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release the allocated memory properly, successful exploit may cause some service abnormal. Affected product include some versions of IPS Module, NGFW Module, Secospace USG6300, Secospace USG6500, Secospace USG6600 and USG9500.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00spc100
huawei ips6000e_firmware v600r006c00
huawei usg9500_firmware v500r001c30spc600
huawei ips_module_firmware v500r005c00spc200
huawei nip6600_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc200
huawei nip6000e_firmware v600r006c00
huawei nip6600_firmware v500r001c30spc200
huawei ngfw_module_firmware v500r005c00spc100
huawei usg9500_firmware v500r005c00spc200
huawei nip6600_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei nip6800_firmware v500r005c00spc200
huawei nip6800_firmware v500r005c00spc100
huawei nip6600_firmware v500r005c00spc200
huawei secospace_usg6500_firmware v500r005c00spc100
huawei secospace_usg6500_firmware v500r005c00spc200
huawei nip6800_firmware v500r001c30spc200
huawei secospace_usg6500_firmware v500r001c30spc600
huawei nip6300_firmware v500r005c00spc100
huawei nip6600_firmware v500r005c00spc100
huawei secospace_usg6300_firmware v500r005c00spc200
huawei nip6300_firmware v500r001c60spc500
huawei nip6300_firmware v500r001c30spc200
huawei ngfw_module_firmware v500r005c00spc200
huawei usg6000e_firmware v600r006c00
huawei secospace_usg6600_firmware v500r001c30spc600
huawei nip6800_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r005c00spc100
huawei usg9500_firmware v500r001c60spc500
huawei ips_module_firmware v500r005c00spc100
huawei nip6800_firmware v500r001c60spc500
huawei nip6300_firmware v500r005c00spc200
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c30spc200
huawei nip6300_firmware v500r001c30spc600
huawei secospace_usg6500_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00spc100
CVE-2021-22313 MEDIUM

There is a Security Function vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may impair data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-22314 MEDIUM

There is a local privilege escalation vulnerability in some versions of ManageOne. A local authenticated attacker could perform specific operations to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege and compromise the service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei manageone 6.5.1.1
huawei manageone 6.5.1
CVE-2021-22316 MEDIUM

There is a Missing Authentication for Critical Function vulnerability in Huawei Smartphone. Attackers with physical access to the device can thereby exploit this vulnerability. A successful exploitation of this vulnerability can compromise the device's data security and functional availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22317 MEDIUM

There is an Information Disclosure vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may impair data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22318 MEDIUM

A component of the HarmonyOS 2.0 has a Null Pointer Dereference Vulnerability. Local attackers may exploit this vulnerability to cause system denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22319 MEDIUM

There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause integer overflows.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-22320 MEDIUM

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affected module. This can lead to denial of service. Affected product include some versions of IPS Module, NGFW Module, NIP6600, NIP6800, Secospace USG6300, Secospace USG6500 and Secospace USG6600.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r005c00spc100
huawei ips_module_firmware v500r005c00spc200
huawei nip6600_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc200
huawei secospace_usg6600_firmware v500r005c20spc500
huawei nip6600_firmware v500r001c30spc200
huawei ngfw_module_firmware v500r005c00spc100
huawei nip6600_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c20spc300
huawei nip6800_firmware v500r005c20spc500
huawei nip6800_firmware v500r005c00spc200
huawei nip6800_firmware v500r005c00spc100
huawei nip6600_firmware v500r005c00spc200
huawei nip6600_firmware v500r005c20spc500
huawei secospace_usg6500_firmware v500r005c00spc100
huawei nip6600_firmware v500r005c20spc300
huawei secospace_usg6500_firmware v500r005c00spc200
huawei ngfw_module_firmware v500r005c20spc300
huawei secospace_usg6500_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r005c20spc300
huawei nip6600_firmware v500r005c00spc100
huawei secospace_usg6300_firmware v500r005c00spc200
huawei secospace_usg6500_firmware v500r005c20spc300
huawei nip6800_firmware v500r005c20spc300
huawei secospace_usg6300_firmware v500r005c20spc500
huawei ngfw_module_firmware v500r005c00spc200
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r005c00spc100
huawei ips_module_firmware v500r005c00spc100
huawei nip6800_firmware v500r001c60spc500
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6500_firmware v500r001c60spc500
huawei ips_module_firmware v500r005c20spc300
huawei secospace_usg6500_firmware v500r005c20spc500
CVE-2021-22321 MEDIUM

There is a use-after-free vulnerability in a Huawei product. A module cannot deal with specific operations in special scenarios. Attackers can exploit this vulnerability by performing malicious operations. This can cause memory use-after-free, compromising normal service. Affected product include some versions of NIP6300, NIP6600, NIP6800, S1700, S2700, S5700, S6700 , S7700, S9700, Secospace USG6300, Secospace USG6500, Secospace USG6600 and USG9500.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s7700_firmware v200r010c00spc300
huawei s7700_firmware v200r008c00
huawei s6700_firmware v200r011c00
huawei s9700_firmware v200r007c01
huawei s12700_firmware v200r007c01b102
huawei nip6300_firmware v500r001c60
huawei s12700_firmware v200r011c10
huawei s6700_firmware v200r010c00spc300
huawei s9700_firmware v200r010c00spc300
huawei s5700_firmware v200r011c00spc100
huawei s9700_firmware v200r007c01b102
huawei s6700_firmware v200r011c00spc100
huawei s2700_firmware v200r010c00spc300
huawei s1700_firmware v200r011c00
huawei nip6300_firmware v500r001c30
huawei s7700_firmware v200r011c10
huawei secospace_usg6300_firmware v500r001c60
huawei s6700_firmware v200r008c00
huawei usg9500_firmware v500r001c30
huawei s6700_firmware v200r010c00
huawei s12700_firmware v200r010c00
huawei s7700_firmware v200r011c00
huawei s1700_firmware v200r010c00
huawei s2700_firmware v200r011c10
huawei s9700_firmware v200r011c00spc100
huawei s1700_firmware v200r009c00spc500
huawei s9700_firmware v200r011c10
huawei s12700_firmware v200r011c00spc100
huawei secospace_usg6500_firmware v500r001c60
huawei s7700_firmware v200r011c00spc100
huawei s9700_firmware v200r010c00
huawei secospace_usg6600_firmware v500r001c60
huawei s6700_firmware v200r011c10
huawei s5700_firmware v200r011c10spc100
huawei nip6600_firmware v500r001c30
huawei secospace_usg6500_firmware v500r001c30
huawei s12700_firmware v200r011c00
huawei nip6800_firmware v500r001c60
huawei s5700_firmware v200r010c00spc300
huawei s1700_firmware v200r009c00spc200
huawei s5700_firmware v200r010c00
huawei s12700_firmware v200r010c00spc300
huawei s6700_firmware v200r011c10spc100
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r011c10
huawei secospace_usg6600_firmware v500r001c30
huawei s2700_firmware v200r011c00
huawei s5700_firmware v200r008c00
huawei secospace_usg6300_firmware v500r001c30
huawei usg9500_firmware v500r001c60
huawei s1700_firmware v200r010c00spc300
huawei s2700_firmware v200r010c00
huawei s5700_firmware v200r011c00
huawei s2700_firmware v200r011c00spc100
huawei s2700_firmware v200r008c00
huawei s1700_firmware v200r011c00spc100
huawei s12700_firmware v200r007c01
huawei s7700_firmware v200r010c00
huawei s1700_firmware v200r011c10
huawei s9700_firmware v200r011c00
CVE-2021-22322 MEDIUM

There is a Missing Authentication for Critical Function vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may impair data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22323 HIGH

There is an Integer Overflow Vulnerability in Huawei Smartphone. Successful exploitation of these vulnerabilities may escalate the permission to that of the root user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22324 MEDIUM

There is a Credentials Management Errors vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may impair data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22325 MEDIUM

There is an Information Disclosure vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may result in video streams being intercepted during transmission.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22326 MEDIUM

A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N 1.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22327 MEDIUM

There is an arbitrary memory write vulnerability in Huawei smart phone when processing file parsing. Due to insufficient validation of the input files, successful exploit could cause certain service abnormal. Affected product versions include:HUAWEI P30 versions 10.0.0.186(C10E7R5P1), 10.0.0.186(C461E4R3P1), 10.0.0.188(C00E85R2P11), 10.0.0.188(C01E88R2P11),10.0.0.188(C605E19R1P3), 10.0.0.190(C185E4R7P1), 10.0.0.190(C431E22R2P5), 10.0.0.190(C432E22R2P5),10.0.0.190(C605E19R1P3), 10.0.0.190(C636E4R3P4), 10.0.0.192(C635E3R2P4).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei p30_firmware 10.0.0.192(c635e3r2p4)
huawei p30_firmware 10.0.0.186(c461e4r3p1)
huawei p30_firmware 10.0.0.190(c432e22r2p5)
huawei p30_firmware 10.0.0.188(c01e88r2p11)
huawei p30_firmware 10.0.0.190(c636e4r3p4)
huawei p30_firmware 10.0.0.188(c605e19r1p3)
huawei p30_firmware 10.0.0.190(c431e22r2p5)
huawei p30_firmware 10.0.0.190(c605e19r1p3)
huawei p30_firmware 10.0.0.186(c10e7r5p1)
huawei p30_firmware 10.0.0.188(c00e85r2p11)
huawei p30_firmware 10.0.0.190(c185e4r7p1)
CVE-2021-22328 MEDIUM

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper handling of the packets, an attacker may craft the specific packet. Successful exploit may cause some services abnormal. Affected product versions include:CloudEngine 12800 V200R005C00SPC800, CloudEngine 5800 V200R005C00SPC800, CloudEngine 6800 V200R005C00SPC800, CloudEngine 7800 V200R005C00SPC800.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2021-22329 MEDIUM

There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper license management of the device, as a result, the license file can be applied and affect integrity of the device. Affected product versions include:S12700 V200R007C01,V200R007C01B102,V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S1700 V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S2700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S5700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10,V200R011C10SPC100;S6700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10,V200R011C10SPC100;S7700 V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10;S9700 V200R007C01,V200R007C01B102,V200R008C00,V200R010C00SPC300,V200R011C00,V200R011C00SPC100,V200R011C10.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r008c00
huawei s7700_firmware v200r010c00spc300
huawei s6700_firmware v200r011c10
huawei s7700_firmware v200r008c00
huawei s6700_firmware v200r011c00
huawei s9700_firmware v200r007c01
huawei s12700_firmware v200r007c01b102
huawei s5700_firmware v200r011c10spc100
huawei s12700_firmware v200r011c10
huawei s6700_firmware v200r010c00spc300
huawei s12700_firmware v200r011c00
huawei s9700_firmware v200r010c00spc300
huawei s5700_firmware v200r011c00spc100
huawei s5700_firmware v200r010c00spc300
huawei s9700_firmware v200r007c01b102
huawei s12700_firmware v200r010c00spc300
huawei s6700_firmware v200r011c00spc100
huawei s6700_firmware v200r011c10spc100
huawei s2700_firmware v200r010c00spc300
huawei s12700_firmware v200r008c00
huawei s5700_firmware v200r011c10
huawei s1700_firmware v200r011c00
huawei s7700_firmware v200r011c10
huawei s2700_firmware v200r011c00
huawei s5700_firmware v200r008c00
huawei s6700_firmware v200r008c00
huawei s1700_firmware v200r010c00spc300
huawei s7700_firmware v200r011c00
huawei s5700_firmware v200r011c00
huawei s2700_firmware v200r011c10
huawei s9700_firmware v200r011c00spc100
huawei s2700_firmware v200r011c00spc100
huawei s9700_firmware v200r011c10
huawei s2700_firmware v200r008c00
huawei s12700_firmware v200r011c00spc100
huawei s1700_firmware v200r011c00spc100
huawei s12700_firmware v200r007c01
huawei s1700_firmware v200r011c10
huawei s7700_firmware v200r011c00spc100
huawei s9700_firmware v200r011c00
CVE-2021-22330 LOW

There is an out of bounds write vulnerability in Huawei Smartphone HUAWEI P30 versions 9.1.0.131(C00E130R1P21) when processing a message. An unauthenticated attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of the input parameter, successful exploit can cause the process and the service to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei p30_firmware 9.1.0.131(c00e130r1p21)
CVE-2021-22331 MEDIUM

There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inputs sufficiently. Attackers can exploit this vulnerability by sending a malicious application request to launch JavaScript injection. This may compromise normal service. Affected product versions include HUAWEI P30 versions earlier than 10.1.0.165(C01E165R2P11), 11.0.0.118(C635E2R1P3), 11.0.0.120(C00E120R2P5), 11.0.0.138(C10E4R5P3), 11.0.0.138(C185E4R7P3), 11.0.0.138(C432E8R2P3), 11.0.0.138(C461E4R3P3), 11.0.0.138(C605E4R1P3), and 11.0.0.138(C636E4R3P3).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
huawei p30_firmware *
CVE-2021-22332 MEDIUM

There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. When a function is called, the same memory pointer is copied to two functional modules. Attackers can exploit this vulnerability by performing a malicious operation to cause the pointer double free. This may lead to module crash, compromising normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r005c00spc800
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r002c50spc800
huawei cloudengine_7800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_5800_firmware v200r002c50spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_5800_firmware v200r003c00spc810
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_6800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_6800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2021-22333 HIGH

There is an Improper Validation of Array Index vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute, thus obtaining system permissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-129,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22334 LOW

There is an Improper Access Control vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause app redirections.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N 2.8 4.0

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22335 MEDIUM

There is a Memory Buffer Improper Operation Limit vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause exceptions in image processing.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22336 MEDIUM

There is an Improper Control of Generation of Code vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause denial of security services on a rooted device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22337 MEDIUM

There is an Information Disclosure vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause leaking of user click data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22338 MEDIUM

There is an XXE injection vulnerability in eCNS280 V100R005C00 and V100R005C10. A module does not perform the strict operation to the input XML message. Attacker can send specific message to exploit this vulnerability, leading to the module denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,

Products Affected

Vendor Product Version
huawei ecns280_firmware v100r005c00
huawei ecns280_firmware v100r005c10
CVE-2021-22339 LOW

There is a denial of service vulnerability in some versions of ManageOne. In specific scenarios, due to the insufficient verification of the parameter, an attacker may craft some specific parameter. Successful exploit may cause some services abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei manageone 6.5
huawei manageone 8.0.0
huawei manageone 8.0.1
huawei manageone 6.5.1.1
huawei manageone 6.5.0
huawei manageone 6.5.1
CVE-2021-22340 MEDIUM

There is a multiple threads race condition vulnerability in Huawei product. A race condition exists for concurrent I/O read by multiple threads. An attacker with the root permission can exploit this vulnerability by performing some operations. Successful exploitation of this vulnerability may cause the system to crash. Affected product versions include: ManageOne 6.5.1.SPC200, 8.0.0,8.0.0-LCND81, 8.0.0.SPC100, 8.0.1,8.0.RC2, 8.0.RC3, 8.0.RC3.SPC100;SMC2.0 V600R019C10SPC700,V600R019C10SPC702, V600R019C10SPC703,V600R019C10SPC800, V600R019C10SPC900, V600R019C10SPC910, V600R019C10SPC920, V600R019C10SPC921, V600R019C10SPC922, V600R019C10SPC930, V600R019C10SPC931

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H 0.5 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei manageone 8.0.0
huawei manageone 8.0.1
huawei smc2.0 v600r019c10spc920
huawei smc2.0 v600r019c10spc702
huawei smc2.0 v600r019c10spc703
huawei smc2.0 v600r019c10spc910
huawei smc2.0 v600r019c10spc921
huawei smc2.0 v600r019c10spc931
huawei smc2.0 v600r019c10spc700
huawei smc2.0 v600r019c10spc900
huawei smc2.0 v600r019c10spc930
huawei smc2.0 v600r019c10spc800
huawei smc2.0 v600r019c10spc922
huawei manageone 6.5.1
CVE-2021-22341 MEDIUM

There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations. This can lead to memory leak. Affected product versions include:IPS Module V500R005C00SPC100,V500R005C00SPC200;NGFW Module V500R005C00SPC100,V500R005C00SPC200;NIP6300 V500R005C00SPC100,V500R005C10SPC200;NIP6600 V500R005C00SPC100,V500R005C00SPC200;Secospace USG6300 V500R005C00SPC100,V500R005C00SPC200;Secospace USG6500 V500R005C00SPC100,V500R005C10SPC200;Secospace USG6600 V500R005C00SPC100,V500R005C00SPC200.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r005c00spc100
huawei nip6300_firmware v500r005c00spc100
huawei nip6600_firmware v500r005c00spc100
huawei ips_module_firmware v500r005c00spc200
huawei secospace_usg6300_firmware v500r005c00spc200
huawei ngfw_module_firmware v500r005c00spc200
huawei nip6300_firmware v500r005c10spc200
huawei secospace_usg6600_firmware v500r005c00spc200
huawei secospace_usg6300_firmware v500r005c00spc100
huawei ips_module_firmware v500r005c00spc100
huawei ngfw_module_firmware v500r005c00spc100
huawei nip6600_firmware v500r005c00spc200
huawei secospace_usg6500_firmware v500r005c00spc100
huawei secospace_usg6500_firmware v500r005c10spc200
CVE-2021-22342 MEDIUM

There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions V500R005C00, V500R005C10, V500R005C20; NGFW Module versions V500R005C00,V500R005C10, V500R005C20; SeMG9811 versions V500R005C00; USG9500 versions V500R001C00, V500R001C20, V500R001C30, V500R001C50, V500R001C60, V500R001C80, V500R005C00, V500R005C10, V500R005C20.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei ips_module_firmware v500r005c10
huawei ngfw_module_firmware v500r005c20
huawei usg9500_firmware v500r005c20
huawei usg9500_firmware v500r001c50
huawei usg9500_firmware v500r001c30
huawei ips_module_firmware v500r005c00
huawei usg9500_firmware v500r001c60
huawei semg9811_firmware v500r005c00
huawei usg9500_firmware v500r005c10
huawei ngfw_module_firmware v500r005c10
huawei usg9500_firmware v500r001c20
huawei ips_module_firmware v500r005c20
huawei usg9500_firmware v500r001c00
huawei usg9500_firmware v500r005c00
huawei usg9500_firmware v500r001c80
huawei ngfw_module_firmware v500r005c00
CVE-2021-22343 MEDIUM

There is a Configuration Defect vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service integrity and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22344 MEDIUM

There is an Improper Access Control vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause temporary DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22345 HIGH

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause out-of-bounds memory write.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22346 MEDIUM

There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to the disclosure of user habits.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22347 MEDIUM

There is an Improper Access Control vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause temporary DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22348 HIGH

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22349 HIGH

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of insufficient input verification may cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22350 HIGH

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the device to crash and restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22351 MEDIUM

There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may induce users to grant permissions on modifying items in the configuration table,causing system exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H 2.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22352 MEDIUM

There is a Configuration Defect Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22353 HIGH

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the kernel to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22354 MEDIUM

There is an Information Disclosure Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-843,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22356 MEDIUM

There is a weak secure algorithm vulnerability in Huawei products. A weak secure algorithm is used in a module. Attackers can exploit this vulnerability by capturing and analyzing the messages between devices to obtain information. This can lead to information leak.Affected product versions include: IPS Module V500R005C00SPC100, V500R005C00SPC200; NGFW Module V500R005C00SPC100, V500R005C00SPC200; Secospace USG6300 V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200; Secospace USG6500 V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200; Secospace USG6600 V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200; USG9500 V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c30spc200
huawei secospace_usg6600_firmware v500r005c00spc100
huawei usg9500_firmware v500r001c30spc600
huawei ips_module_firmware v500r005c00spc200
huawei secospace_usg6300_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c60spc500
huawei secospace_usg6300_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc200
huawei ngfw_module_firmware v500r005c00spc100
huawei usg9500_firmware v500r005c00spc200
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6500_firmware v500r005c00spc100
huawei secospace_usg6500_firmware v500r005c00spc200
huawei secospace_usg6500_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r005c00spc200
huawei ngfw_module_firmware v500r005c00spc200
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r005c00spc100
huawei usg9500_firmware v500r001c60spc500
huawei ips_module_firmware v500r005c00spc100
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6500_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00spc100
CVE-2021-22357 MEDIUM

There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages due to validating inputs insufficiently. Attackers can exploit this vulnerability by sending specific messages to affected module. This can cause denial of service. Affected product versions include: S12700 V200R013C00SPC500, V200R019C00SPC500; S5700 V200R013C00SPC500, V200R019C00SPC500; S6700 V200R013C00SPC500, V200R019C00SPC500; S7700 V200R013C00SPC500, V200R019C00SPC500.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s12700_firmware v200r019c00spc500
huawei s12700_firmware v200r013c00spc500
huawei s6700_firmware v200r019c00spc500
huawei s5700_firmware v200r019c00spc500
huawei s7700_firmware v200r013c00spc500
huawei s7700_firmware v200r019c00spc500
huawei s5700_firmware v200r013c00spc500
huawei s6700_firmware v200r013c00spc500
CVE-2021-22358 MEDIUM

There is an insufficient input validation vulnerability in FusionCompute 8.0.0. Due to the input validation is insufficient, an attacker can exploit this vulnerability to upload any files to the device. Successful exploit may cause the service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
CVE-2021-22359 HIGH

There is a denial of service vulnerability in the verisions V200R005C00SPC500 of S5700 and V200R005C00SPC500 of S6700. An attacker could exploit this vulnerability by sending specific message to a targeted device. Due to insufficient input validation, successful exploit can cause the service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s6700_firmware v200r005c00spc500
huawei s5700_firmware v200r005c00spc500
CVE-2021-22360 MEDIUM

There is a resource management error vulnerability in the verisions V500R001C60SPC500, V500R005C00SPC100, V500R005C00SPC200 of USG9500. An authentication attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
huawei usg9500_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00spc200
huawei usg9500_firmware v500r005c00spc100
CVE-2021-22361 MEDIUM

There is an improper authorization vulnerability in eCNS280 V100R005C00, V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200. A file access is not authorized correctly. Attacker with low access may launch privilege escalation in a specific scenario. This may compromise the normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei ecns280_firmware v100r005c00
huawei ese620x_vess_firmware v100r001c10spc200
huawei ese620x_vess_firmware v100r001c20spc200
huawei ecns280_firmware v100r005c10
CVE-2021-22362 MEDIUM

There is an out of bounds write vulnerability in some Huawei products. An attacker can exploit this vulnerability by sending crafted data in the packet to the target device. Due to insufficient validation of message, successful exploit can cause certain service abnormal.Affected product versions include:CloudEngine 12800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800;CloudEngine 5800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800@;CloudEngine 6800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R005C20SPC800,V200R019C00SPC800,V200R019C10SPC800;CloudEngine 7800 versions V200R002C50SPC800,V200R003C00SPC810,V200R005C00SPC800,V200R005C10SPC800,V200R019C00SPC800,V200R019C10SPC800.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r005c00spc800
huawei cloudengine_5800_firmware v200r019c10spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_7800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r019c10spc800
huawei cloudengine_6800_firmware v200r019c10spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r002c50spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r019c10spc800
huawei cloudengine_5800_firmware v200r003c00spc810
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_6800_firmware v200r002c50spc800
huawei cloudengine_5800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2021-22363 MEDIUM

There is a resource management error vulnerability in eCNS280_TD V100R005C10SPC650. An attacker needs to perform specific operations to exploit the vulnerability on the affected device. Due to improper resource management of the function, the vulnerability can be exploited to cause service abnormal on affected devices.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
huawei ecns280_td_firmware v100r005c10spc650
CVE-2021-22364 LOW

There is a denial of service vulnerability in the versions 10.1.0.126(C00E125R5P3) of HUAWEI Mate 30 and 10.1.0.152(C00E136R7P2) of HUAWEI Mate 30 (5G) . A module does not verify certain parameters sufficiently and it leads to some exceptions. Successful exploit could cause a denial of service condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei mate_30_5g_firmware 10.1.0.152(c00e136r7p2)
huawei mate_30_firmware 10.1.0.126(c00e125r5p3)
CVE-2021-22365 LOW

There is an out of bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. A local attacker can exploit this vulnerability by sending specific message to the target device. Due to insufficient validation of internal message, successful exploit may cause the process and the service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ese620x_vess_firmware v200r001c00spc300
huawei ese620x_vess_firmware v100r001c10spc200
huawei ese620x_vess_firmware v100r001c20spc200
CVE-2021-22366 MEDIUM

There is an out-of-bounds read vulnerability in eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a function that handles an internal message contains an out-of-bounds read vulnerability. An attacker could crafted messages between system process, successful exploit could cause Denial of Service (DoS).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ese620x_vess_firmware v200r001c00spc300
huawei ese620x_vess_firmware v100r001c10spc200
huawei ese620x_vess_firmware v100r001c20spc200
CVE-2021-22367 HIGH

There is a Key Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to authentication bypass.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22368 MEDIUM

There is a Permission Control Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect normal use of the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
CVE-2021-22369 HIGH

There is a Time-of-check Time-of-use (TOCTOU) Race Condition Vulnerability in Huawei Smartphone. Successful exploitation of these vulnerabilities may escalate the permission to that of the root user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-367,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22370 MEDIUM

There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22371 MEDIUM

There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22372 MEDIUM

There is a Security Features Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22373 MEDIUM

There is a Defects Introduced in the Design Process Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service integrity and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22374 MEDIUM

There is an Improper Validation of Array Index Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause stability risks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-129,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 11.0.0
CVE-2021-22375 HIGH

There is a Key Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality,availability and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22376 HIGH

A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may exploit this vulnerability to bypass user restrictions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22377 MEDIUM

There is a command injection vulnerability in S12700 V200R019C00SPC500, S2700 V200R019C00SPC500, S5700 V200R019C00SPC500, S6700 V200R019C00SPC500 and S7700 V200R019C00SPC500. A module does not verify specific input sufficiently. Attackers can exploit this vulnerability by sending malicious parameters to inject command. This can compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei s12700_firmware v200r019c00spc500
huawei s6700_firmware v200r019c00spc500
huawei s2700_firmware v200r019c00spc500
huawei s5700_firmware v200r019c00spc500
huawei s7700_firmware v200r019c00spc500
CVE-2021-22378 LOW

There is a race condition vulnerability in eCNS280_TD V100R005C00 and V100R005C10. There is a timing window exists in which the database can be operated by another thread that is operating concurrently. Successful exploit may cause the affected device abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei ecns280_td_firmware v100r005c00
huawei ecns280_td_firmware v100r005c10
CVE-2021-22379 MEDIUM

There is an Integer Underflow (Wrap or Wraparound) Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause DoS of Samgr.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-191,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22380 MEDIUM

There is a Cleartext Transmission of Sensitive Information Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,

Products Affected

Vendor Product Version
huawei emui 9.1.0
CVE-2021-22381 MEDIUM

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause an infinite loop in DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22382 MEDIUM

Huawei LTE USB Dongle products have an improper permission assignment vulnerability. An attacker can locally access and log in to a PC to induce a user to install a specially crafted application. After successfully exploiting this vulnerability, the attacker can perform unauthenticated operations. Affected product versions include:E3372 E3372h-153TCPU-V200R002B333D01SP00C00.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-281,

Products Affected

Vendor Product Version
huawei e3372_firmware *
huawei e8372_firmware *
CVE-2021-22383 MEDIUM

There is an out-of-bounds read vulnerability in eCNS280_TD V100R005C10 and eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300. The vulnerability is due to a message-handling function that contains an out-of-bounds read vulnerability. An attacker can exploit this vulnerability by sending a specific message to the target device, which could cause a Denial of Service (DoS).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ese620x_vess_firmware v200r001c00spc300
huawei ecns280_td_firmware v100r005c10
huawei ese620x_vess_firmware v100r001c10spc200
huawei ese620x_vess_firmware v100r001c20spc200
CVE-2021-22384 MEDIUM

There is an Information Disclosure Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to authentication bypass.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22385 HIGH

A component of the Huawei smartphone has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause Kernel Code Execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-22386 MEDIUM

A component of the Huawei smartphone has a Double Free vulnerability. Local attackers may exploit this vulnerability to cause Root Elevation of Privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.0 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22387 HIGH

There is an Improper Control of Dynamically Managing Code Resources Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to remotely execute commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-913,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-22388 HIGH

There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22389 HIGH

There is a Permission Control Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22390 HIGH

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause certain codes to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22391 MEDIUM

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-131,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22392 MEDIUM

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause verification bypass and directions to abnormal addresses.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-131,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22393 MEDIUM

There is a denial of service vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngine 7800 and CloudEngine 12800. The affected product cannot deal with some messages because of module design weakness . Attackers can exploit this vulnerability by sending a large amount of specific messages to cause denial of service. This can compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cloudengine_5800 v200r003c00spc810
huawei cloudengine_12800_firmware v200r005c00spc800
huawei cloudengine_7800_firmware v200r002c50spc800
huawei cloudengine_7800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r002c50spc800
huawei cloudengine_5800 v200r005c10spc800
huawei cloudengine_5800 v200r002c50spc800
huawei cloudengine_6800_firmware v200r005c00spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_12800_firmware v200r003c00spc810
huawei cloudengine_6800_firmware v200r002c50spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_5800 v200r005c00spc800
huawei cloudengine_6800_firmware v200r003c00spc810
huawei cloudengine_7800_firmware v200r005c00spc800
CVE-2021-22394 MEDIUM

There is a buffer overflow vulnerability in smartphones. Successful exploitation of this vulnerability may cause DoS of the apps during Multi-Screen Collaboration.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-22395 MEDIUM

There is a code injection vulnerability in smartphones. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-22396 MEDIUM

There is a privilege escalation vulnerability in some Huawei products. Due to improper privilege management, a local attacker with common privilege may access some specific files in the affected products. Successful exploit will cause privilege escalation.Affected product versions include:eCNS280_TD V100R005C00,V100R005C10;eSE620X vESS V100R001C10SPC200,V100R001C20SPC200.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei ecns280_td_firmware v100r005c00
huawei ecns280_td_firmware v100r005c10
huawei ese620x_vess_firmware v100r001c10spc200
huawei ese620x_vess_firmware v100r001c20spc200
CVE-2021-22397 MEDIUM

There is a privilege escalation vulnerability in Huawei ManageOne 8.0.0. External parameters of some files are lack of verification when they are be called. Attackers can exploit this vulnerability by performing these files to cause privilege escalation attack. This can compromise normal service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei manageone 8.0.0
CVE-2021-22398 LOW

There is a logic error vulnerability in several smartphones. The software does not properly restrict certain operation when the Digital Balance function is on. Successful exploit could allow the attacker to bypass the Digital Balance limit after a series of operations. Affected product versions include: Hulk-AL00C 9.1.1.201(C00E201R8P1);Jennifer-AN00C 10.1.1.171(C00E170R6P3);Jenny-AL10B 10.1.0.228(C00E220R5P1) and OxfordPL-AN10B 10.1.0.116(C00E110R2P1).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-863,

Products Affected

Vendor Product Version
huawei oxfordpl-an10b_firmware 10.1.0.116(c00e110r2p1)
huawei jenny-al10b_firmware 10.1.0.228(c00e220r5p1)
huawei jennifer-an00c_firmware 10.1.1.171(c00e170r6p3)
huawei hulk-al00c_firmware 9.1.1.201(c00e201r8p1)
CVE-2021-22399 LOW

The Bluetooth function of some Huawei smartphones has a DoS vulnerability. Attackers can install third-party apps to send specific broadcasts, causing the Bluetooth module to crash. This vulnerability is successfully exploited to cause the Bluetooth function to become abnormal. Affected product versions include: HUAWEI P30 10.0.0.195(C432E22R2P5), 10.0.0.200(C00E85R2P11), 10.0.0.200(C461E6R3P1), 10.0.0.201(C10E7R5P1), 10.0.0.201(C185E4R7P1), 10.0.0.206(C605E19R1P3), 10.0.0.209(C636E6R3P4), 10.0.0.210(C635E3R2P4), and versions earlier than 10.1.0.165(C01E165R2P11).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei p30_firmware 10.0.0.201(c185e4r7p1)
huawei p30_firmware *
huawei p30_firmware 10.0.0.209(c636e6r3p4)
huawei p30_firmware 10.0.0.200(c00e85r2p11)
huawei p30_firmware 10.0.0.201(c10e7r5p1)
huawei p30_firmware 10.0.0.195(c432e22r2p5)
huawei p30_firmware 10.0.0.210(c635e3r2p4)
huawei p30_firmware 10.0.0.206(c605e19r1p3)
huawei p30_firmware 10.0.0.200(c461e6r3p1)
CVE-2021-22400 MEDIUM

Some Huawei Smartphones has an insufficient input validation vulnerability due to the lack of parameter validation. An attacker may trick a user into installing a malicious APP. The app can modify specific parameters, causing the system to crash. Affected product include:OxfordS-AN00A 10.0.1.10(C00E10R1P1),10.0.1.105(C00E103R3P3),10.0.1.115(C00E110R3P3),10.0.1.123(C00E121R3P3),10.0.1.135(C00E130R3P3),10.0.1.135(C00E130R4P1),10.0.1.152(C00E140R4P1),10.0.1.160(C00E160R4P1),10.0.1.167(C00E166R4P1),10.0.1.173(C00E172R5P1),10.0.1.178(C00E175R5P1) and 10.1.0.202(C00E79R5P1).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei oxfords-an00a_firmware 10.0.1.160(c00e160r4p1)
huawei oxfords-an00a_firmware 10.0.1.10(c00e10r1p1)
huawei oxfords-an00a_firmware 10.0.1.105(c00e103r3p3)
huawei oxfords-an00a_firmware 10.0.1.173(c00e172r5p1)
huawei oxfords-an00a_firmware 10.0.1.115(c00e110r3p3)
huawei oxfords-an00a_firmware 10.1.0.202(c00e79r5p1)
huawei oxfords-an00a_firmware 10.0.1.167(c00e166r4p1)
huawei oxfords-an00a_firmware 10.0.1.152(c00e140r4p1)
huawei oxfords-an00a_firmware 10.0.1.135(c00e130r3p3)
huawei oxfords-an00a_firmware 10.0.1.135(c00e130r4p1)
huawei oxfords-an00a_firmware 10.0.1.123(c00e121r3p3)
huawei oxfords-an00a_firmware 10.0.1.178(c00e175r5p1)
CVE-2021-22401 MEDIUM

There is a Remote DoS vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability can affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22402 MEDIUM

There is a DoS vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause DoS attacks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22403 HIGH

There is a vulnerability of hijacking unverified providers in Huawei Smartphone.Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22404 MEDIUM

There is a Directory traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22405 MEDIUM

There is a Configuration defects in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22406 MEDIUM

There is an Uncaught Exception vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the app to exit unexpectedly.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22407 MEDIUM

There is a Configuration defects in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22409 LOW

There is a denial of service vulnerability in some versions of ManageOne. There is a logic error in the implementation of a function of a module. When the service pressure is heavy, there is a low probability that an exception may occur. Successful exploit may cause some services abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei manageone 6.5
huawei manageone 8.0.0
huawei manageone 8.0.1
huawei manageone 6.5.1.1
huawei manageone 6.5.0
huawei manageone 6.5.1
CVE-2021-22410 LOW

There is a XSS injection vulnerability in iMaster NCE-Fabric V100R019C10. A module of the client does not verify the input sufficiently. Attackers can exploit this vulnerability by modifying input after logging onto the client. This may compromise the normal service of the client.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei imaster_nce-fabric_firmware v100r019c10
CVE-2021-22411 MEDIUM

There is an out-of-bounds write vulnerability in some Huawei products. The code of a module have a bad judgment logic. Attackers can exploit this vulnerability by performing multiple abnormal activities to trigger the bad logic and cause out-of-bounds write. This may compromise the normal service of the module.Affected product versions include: NGFW Module versions V500R005C00SPC100,V500R005C00SPC200;Secospace USG6300 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6500 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;USG9500 versions V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei secospace_usg6600_firmware v500r005c00spc100
huawei secospace_usg6300_firmware v500r005c00spc200
huawei secospace_usg6300_firmware v500r001c30spc600
huawei secospace_usg6600_firmware v500r001c60spc500
huawei ngfw_module_firmware v500r005c00spc200
huawei secospace_usg6600_firmware v500r001c30spc600
huawei secospace_usg6300_firmware v500r001c60spc500
huawei secospace_usg6600_firmware v500r005c00spc200
huawei secospace_usg6300_firmware v500r005c00spc100
huawei usg9500_firmware v500r001c60spc500
huawei ngfw_module_firmware v500r005c00spc100
huawei usg9500_firmware v500r005c00spc200
huawei secospace_usg6600_firmware v500r001c30spc200
huawei secospace_usg6500_firmware v500r005c00spc100
huawei secospace_usg6500_firmware v500r005c00spc200
huawei secospace_usg6500_firmware v500r001c30spc200
huawei secospace_usg6300_firmware v500r001c30spc200
huawei secospace_usg6500_firmware v500r001c30spc600
huawei secospace_usg6500_firmware v500r001c60spc500
huawei usg9500_firmware v500r005c00spc100
CVE-2021-22412 MEDIUM

There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause random kernel address access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22413 MEDIUM

There is an Integer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei emui 8.0
huawei magic_ui 3.0.0
huawei emui 8.2
huawei emui 10.0.0
CVE-2021-22414 MEDIUM

There is a Memory Buffer Errors Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei emui 8.0
huawei magic_ui 3.0.0
huawei emui 8.2
huawei emui 10.0.0
CVE-2021-22415 MEDIUM

There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause kernel exceptions with the code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-131,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22416 HIGH

A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel Code Execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22417 MEDIUM

A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel Memory Leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22418 HIGH

A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause memory overwriting.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22419 MEDIUM

A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Local attackers may exploit this vulnerability to cause persistent dos.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22420 HIGH

A component of the HarmonyOS has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause the underlying trust of the application trustlist mechanism is missing..

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22421 HIGH

A component of the HarmonyOS has a Improper Privilege Management vulnerability. Local attackers may exploit this vulnerability to cause further Elevation of Privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22422 HIGH

A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause memory overwriting.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22423 HIGH

A component of the HarmonyOS has a Out-of-bounds Write Vulnerability. Local attackers may exploit this vulnerability to cause integer overflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos -
CVE-2021-22424 MEDIUM

A component of the HarmonyOS has a Kernel Memory Leakage Vulnerability. Local attackers may exploit this vulnerability to cause Kernel Denial of Service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22425 HIGH

A component of the HarmonyOS has a Double Free vulnerability. Local attackers may exploit this vulnerability to cause Root Elevating Privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei harmonyos -
CVE-2021-22426 HIGH

There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-22427 MEDIUM

There is a Heap-based Buffer Overflow Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to authentication bypass.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22428 MEDIUM

There is an Incomplete Cleanup Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to authentication bypass.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,CWE-459,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22429 HIGH

There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-22430 HIGH

There is a logic bypass vulnerability in smartphones. Successful exploitation of this vulnerability may cause code injection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-22431 HIGH

There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-22432 HIGH

There is a vulnerability when configuring permission isolation in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-22433 HIGH

There is a memory address out of bounds in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-22434 HIGH

There is a memory address out of bounds vulnerability in smartphones. Successful exploitation of this vulnerability may cause malicious code to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-22435 MEDIUM

There is a Configuration Defect Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service integrity and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22436 MEDIUM

There is a Logic Bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service integrity and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22437 MEDIUM

There is a software integer overflow leading to a TOCTOU condition in smartphones. Successful exploitation of this vulnerability may cause random address access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.0 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei magic_ui 3.1.0
CVE-2021-22438 HIGH

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause malicious code to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22439 HIGH

There is a deserialization vulnerability in Huawei AnyOffice V200R006C10. An attacker can construct a specific request to exploit this vulnerability. Successfully exploiting this vulnerability, the attacker can execute remote malicious code injection and to control the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,

Products Affected

Vendor Product Version
huawei anyoffice v200r006c10
CVE-2021-22440 LOW

There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly validate the pathname. Successful exploit could allow the attacker to access a location that is outside of the restricted directory by a crafted filename. Affected product versions include:HUAWEI Mate 20 9.0.0.195(C01E195R2P1), 9.1.0.139(C00E133R3P1);HUAWEI Mate 20 Pro 9.0.0.187(C432E10R1P16), 9.0.0.188(C185E10R2P1), 9.0.0.245(C10E10R2P1), 9.0.0.266(C432E10R1P16), 9.0.0.267(C636E10R2P1), 9.0.0.268(C635E12R1P16), 9.0.0.278(C185E10R2P1); Hima-L29C 9.0.0.105(C10E9R1P16), 9.0.0.105(C185E9R1P16), 9.0.0.105(C636E9R1P16); Laya-AL00EP 9.1.0.139(C786E133R3P1); OxfordS-AN00A 10.1.0.223(C00E210R5P1); Tony-AL00B 9.1.0.257(C00E222R2P1).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei hima-l29c_firmware 9.0.0.105(c185e9r1p16)
huawei hima-l29c_firmware 9.0.0.105(c10e9r1p16)
huawei tony-al00b_firmware 9.1.0.257(c00e222r2p1)
huawei mate_20_firmware 9.0.0.195(c01e195r2p1)
huawei hima-l29c_firmware 9.0.0.105(c636e9r1p16)
huawei mate_20_pro_firmware 9.0.0.245(c10e10r2p1)
huawei mate_20_pro_firmware 9.0.0.266(c432e10r1p16)
huawei laya-al00ep_firmware 9.1.0.139(c786e133r3p1)
huawei mate_20_pro_firmware 9.0.0.267(c636e10r2p1)
huawei mate_20_pro_firmware 9.0.0.278(c185e10r2p1)
huawei oxfords-an00a_firmware 10.1.0.223(c00e210r5p1)
huawei mate_20_firmware 9.1.0.139(c00e133r3p1)
huawei mate_20_pro_firmware 9.0.0.187(c432e10r1p16)
huawei mate_20_pro_firmware 9.0.0.188(c185e10r2p1)
huawei mate_20_pro_firmware 9.0.0.268(c635e12r1p16)
CVE-2021-22441 MEDIUM

Some Huawei products have an integer overflow vulnerability. Successful exploitation of this vulnerability may lead to kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-22442 MEDIUM

There is an Improper Validation of Integrity Check Value Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-354,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22443 MEDIUM

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause random address access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22444 HIGH

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause code injection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22445 HIGH

There is an Input Verification Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22446 HIGH

There is an Information Disclosure Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22447 HIGH

There is an Improper Check for Unusual or Exceptional Conditions Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-754,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22448 MEDIUM

There is an improper verification vulnerability in smartphones. Successful exploitation of this vulnerability may cause unauthorized read and write of some files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22449 MEDIUM

There is a logic vulnerability in Elf-G10HN 1.0.0.608. An unauthenticated attacker could perform specific operations to exploit this vulnerability. Due to insufficient security design, successful exploit could allow an attacker to add users to be friends without prompting in the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei elf-g10hn 1.0.0.608
CVE-2021-22450 MEDIUM

A component of the HarmonyOS has a Incomplete Cleanup vulnerability. Local attackers may exploit this vulnerability to cause memory exhaustion.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-459,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22451 MEDIUM

A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause memory overwriting.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22452 LOW

A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to read at any address.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22453 LOW

A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to cause nearby process crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22454 LOW

A component of the HarmonyOS has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause core dump.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22455 LOW

A component of the HarmonyOS has a Integer Overflow or Wraparound vulnerability. Local attackers may exploit this vulnerability to cause the memory which is not released.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22456 LOW

A component of the HarmonyOS has a Data Processing Errors vulnerability. Local attackers may exploit this vulnerability to cause Kernel System unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22457 LOW

A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to cause out-of-bounds write.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22458 MEDIUM

A component of the HarmonyOS has a Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability. Local attackers may exploit this vulnerability to cause arbitrary code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22459 LOW

A component of the HarmonyOS has a NULL Pointer Dereference vulnerability. Local attackers may exploit this vulnerability to cause System functions which are unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22460 LOW

A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Local attackers may exploit this vulnerability to bypass the control mechanism.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-345,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22461 LOW

A component of the HarmonyOS has a Allocation of Resources Without Limits or Throttling vulnerability. Local attackers may exploit this vulnerability to cause nearby process crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-770,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22462 LOW

A component of the HarmonyOS has a NULL Pointer Dereference vulnerability. Local attackers may exploit this vulnerability to cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22463 LOW

A component of the HarmonyOS has a Use After Free vulnerability . Local attackers may exploit this vulnerability to cause Kernel Information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22464 MEDIUM

A component of the HarmonyOS has a Out-of-bounds Read vulnerability. Local attackers may exploit this vulnerability to cause system Soft Restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22465 LOW

A component of the HarmonyOS has a Heap-based Buffer Overflow vulnerability. Local attackers may exploit this vulnerability to cause Kernel System unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22466 LOW

A component of the HarmonyOS has a Use After Free vulnerability. Local attackers may exploit this vulnerability to cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22467 LOW

A component of the HarmonyOS has a Improper Input Validation vulnerability. Local attackers may exploit this vulnerability to read at any address.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22468 LOW

A component of the HarmonyOS has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability. Local attackers may exploit this vulnerability to cause kernel address leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 1.8 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22469 LOW

A component of the HarmonyOS has a Out-of-bounds Read vulnerability. Local attackers may exploit this vulnerability to cause kernel out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H 1.8 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22470 MEDIUM

A component of the HarmonyOS has a Privileges Controls vulnerability. Local attackers may exploit this vulnerability to expand the Recording Trusted Domain.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22471 LOW

A component of the HarmonyOS has a NULL Pointer Dereference vulnerability. Local attackers may exploit this vulnerability to cause nearby process crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-22472 MEDIUM

There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22473 MEDIUM

There is an Authentication vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-22474 HIGH

There is an Out-of-bounds memory access in Huawei Smartphone.Successful exploitation of this vulnerability may cause process exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22475 MEDIUM

There is an Improper permission management vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22478 LOW

The interface of a certain HarmonyOS module has a UAF vulnerability. Successful exploitation of this vulnerability may lead to information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-22479 MEDIUM

The interface of a certain HarmonyOS module has an invalid address access vulnerability. Successful exploitation of this vulnerability may lead to kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-22480 HIGH

The interface of a certain HarmonyOS module has an integer overflow vulnerability. Successful exploitation of this vulnerability may lead to heap memory overflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-22481 MEDIUM

There is a Verification errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22482 MEDIUM

There is an Uninitialized variable vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause transmission of invalid data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-909,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22483 MEDIUM

There is a issue of IP address spoofing in Huawei Smartphone. Successful exploitation of this vulnerability may cause DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22485 MEDIUM

There is a SSID vulnerability with Wi-Fi network connections in Huawei devices.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22486 MEDIUM

There is a issue of Unstandardized field names in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22487 MEDIUM

There is an Out-of-bounds read vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-22488 MEDIUM

There is an Unauthorized file access vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability by modifying soft links may tamper with the files restored from backups.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-22489 MEDIUM

There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-22490 MEDIUM

There is a Permission verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect the device performance.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-22491 MEDIUM

There is an Input verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-33630

NULL Pointer Dereference vulnerability in openEuler kernel on Linux (network modules) allows Pointer Manipulation. This vulnerability is associated with program files net/sched/sch_cbs.C. This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
securities@openeuler.org 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei openeuler *
CVE-2021-33631

Integer Overflow or Wraparound vulnerability in openEuler kernel on Linux (filesystem modules) allows Forced Integer Overflow.This issue affects openEuler kernel: from 4.19.90 before 4.19.90-2401.3, from 5.10.0-60.18.0 before 5.10.0-183.0.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
securities@openeuler.org 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei openeuler *
CVE-2021-33640

After tar_close(), libtar.c releases the memory pointed to by pointer t. After tar_close() is called in the list() function, it continues to use pointer t: free_longlink_longname(t->th_buf) . As a result, the released memory is used (use-after-free).

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
huawei openeuler 20.03
huawei openeuler 22.03
CVE-2021-33643

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longlink, causing an out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
feep libtar *
fedoraproject fedora 35
huawei openeuler 20.03
huawei openeuler 22.03
CVE-2021-33644

An attacker who submits a crafted tar file with size in header struct being 0 may be able to trigger an calling of malloc(0) for a variable gnu_longname, causing an out-of-bounds read.

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
feep libtar *
fedoraproject fedora 35
huawei openeuler 20.03
huawei openeuler 22.03
CVE-2021-33645

The th_read() function doesn’t free a variable t->th_buf.gnu_longlink after allocating memory, which may cause a memory leak.

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
feep libtar *
fedoraproject fedora 35
huawei openeuler 20.03
huawei openeuler 22.03
CVE-2021-33646

The th_read() function doesn’t free a variable t->th_buf.gnu_longname after allocating memory, which may cause a memory leak.

Products Affected

Vendor Product Version
fedoraproject fedora 36
fedoraproject fedora 37
feep libtar *
fedoraproject fedora 35
huawei openeuler 20.03
huawei openeuler 22.03
CVE-2021-33656

When setting font with malicous data by ioctl cmd PIO_FONT,kernel will write memory out of bounds.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

Products Affected

Vendor Product Version
debian debian_linux 10.0
linux linux_kernel *
huawei openeuler 20.03
CVE-2021-33658 MEDIUM

atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. Authentication is not forcibly enabled in the default configuration.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
huawei atune *
CVE-2021-36985 HIGH

There is a Code injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may exhaust system resources and cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36986 HIGH

There is a vulnerability of tampering with the kernel in Huawei Smartphone.Successful exploitation of this vulnerability may escalate permissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36987 HIGH

There is a issue that nodes in the linked list being freed for multiple times in Huawei Smartphone due to race conditions. Successful exploitation of this vulnerability can cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36988 MEDIUM

There is a Parameter verification issue in Huawei Smartphone.Successful exploitation of this vulnerability can affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36989 HIGH

There is a Kernel crash vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may escalate permissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36990 HIGH

There is a vulnerability of tampering with the kernel in Huawei Smartphone.Successful exploitation of this vulnerability may escalate permissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36991 MEDIUM

There is an Unauthorized file access vulnerability in Huawei Smartphone due to unstandardized path input.Successful exploitation of this vulnerability by creating malicious file paths can cause unauthorized file access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36992 MEDIUM

There is a Public key verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36993 MEDIUM

There is a Memory leaks vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36994 MEDIUM

There is a issue that trustlist strings being repeatedly inserted into the linked list in Huawei Smartphone due to race conditions. Successful exploitation of this vulnerability can cause exceptions when managing the system trustlist.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36995 MEDIUM

There is an Unauthorized file access vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability by modifying soft links may tamper with the files restored from backups.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36996 MEDIUM

There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause transmission of certain virtual information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-36997 MEDIUM

There is a Low memory error in Huawei Smartphone due to the unlimited size of images to be parsed.Successful exploitation of this vulnerability may cause the Gallery or Files app to exit unexpectedly.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36998 MEDIUM

There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to read an array that is out of bounds.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-36999 MEDIUM

There is a Buffer overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability by sending malicious images and inducing users to open the images may cause remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-37001 MEDIUM

There is a Register tampering vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow the register value to be modified.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-37002 HIGH

There is a Memory out-of-bounds access vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause malicious code to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-37003 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37004 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37005 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37006 MEDIUM

There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the confidentiality of users is affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-281,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37007 HIGH

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37008 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37009 MEDIUM

There is a Configuration vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the confidentiality of users is affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37010 MEDIUM

There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the confidentiality of users is affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37011 HIGH

There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37012 HIGH

There is a Data Processing Errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37013 MEDIUM

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the availability of users is affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37014 MEDIUM

There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to device cannot be used properly.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37015 HIGH

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37016 HIGH

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause Information Disclosure or Denial of Service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37017 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37018 HIGH

There is a Data Processing Errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37019 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37020 MEDIUM

There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37021 MEDIUM

There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos *
huawei magic_ui 3.1.0
CVE-2021-37022 HIGH

There is a Heap-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause root permission which can be escalated.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37023 MEDIUM

There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause media files which can be reads and writes in non-distributed directories on any device on the network..

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 3.9 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37024 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37025 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37026 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-37027 MEDIUM

There is a DoS vulnerability in smartphones. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37028 MEDIUM

There is a command injection vulnerability in the HG8045Q product. When the command-line interface is enabled, which is disabled by default, attackers with administrator privilege could execute part of commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
huawei hg8045q_firmware v300r018c10
huawei hg8045q_firmware v300r016c00spc110
CVE-2021-37029 MEDIUM

There is an Identity verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-37030 MEDIUM

There is an Improper permission vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37031 MEDIUM

There is a Remote DoS vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the app to exit unexpectedly.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-37032 MEDIUM

There is a Bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause Digital Balance to fail to work.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37033 MEDIUM

There is an Injection attack vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-74,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-37034 MEDIUM

There is an Unstandardized field names in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37035 MEDIUM

There is a Remote DoS vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the app to exit unexpectedly.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-37036 LOW

There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280_TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the information leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-532,

Products Affected

Vendor Product Version
huawei ecns280_td_firmware v100r005c00
huawei fusioncompute 6.5.1
huawei ecns280_td_firmware v100r005c10
CVE-2021-37037 HIGH

There is an Invalid address access vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37038 MEDIUM

There is an Improper access control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
CVE-2021-37039 LOW

There is an Input verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause Bluetooth DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37040 MEDIUM

There is a Parameter injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause privilege escalation of files after CIFS share mounting.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-88,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37041 MEDIUM

There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-37042 MEDIUM

There is an Improper verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-37043 MEDIUM

There is a Stack-based Buffer Overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to malicious application processes occupy system resources.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei magic_ui 2.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei emui 9.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37044 MEDIUM

There is a Permission control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-281,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37045 HIGH

There is an UAF vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart unexpectedly and the kernel-mode code to be executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei emui 10.1.0
huawei harmonyos *
huawei magic_ui 3.1.0
CVE-2021-37046 HIGH

There is a Memory leak vulnerability with the codec detection module in Huawei Smartphone.Successful exploitation of this vulnerability may cause the device to restart due to memory exhaustion.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-37047 MEDIUM

There is an Input verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause some services to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-37048 MEDIUM

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to fake visitors to control PC,play a video,etc.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37049 HIGH

There is a Heap-based buffer overflow vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may rewrite the memory of adjacent objects.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37050 MEDIUM

There is a Missing sensitive data encryption vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-311,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37051 MEDIUM

There is an Out-of-bounds read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause out-of-bounds memory access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37052 MEDIUM

There is an Exception log vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause address information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37053 MEDIUM

There is a Service logic vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37054 MEDIUM

There is an Identity spoofing and authentication bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei harmonyos *
CVE-2021-37055 MEDIUM

There is a Logic bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to obtain certain device information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2021-37056 MEDIUM

There is an Improper permission control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to obtain certain device information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-281,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37057 HIGH

There is a Improper Validation of Array Index vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to restart the phone.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-129,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37058 MEDIUM

There is a Permissions,Privileges,and Access Controls vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the user's nickname is maliciously tampered with.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37059 HIGH

There is a Weaknesses Introduced During Design

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37060 MEDIUM

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to SAMGR Heap Address Leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37061 MEDIUM

There is a Uncontrolled Resource Consumption vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Screen projection application denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37062 MEDIUM

There is a Improper Validation of Array Index vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to memory overflow and information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-129,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37063 HIGH

There is a Cryptographic Issues vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to read and delete images of Harmony devices.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37064 MEDIUM

There is a Improper Limitation of a Pathname to a Restricted Directory vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to arbitrary file created.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37065 MEDIUM

There is a Integer Overflow or Wraparound vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Confidentiality or Availability impacted.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37066 MEDIUM

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to process crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37067 MEDIUM

There is a Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Confidentiality impacted.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37068 MEDIUM

There is a Resource Management Errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of Service Attacks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37069 MEDIUM

There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H 2.2 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37070 MEDIUM

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to process crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37071 MEDIUM

There is a Business Logic Errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to persistent dos.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37072 MEDIUM

There is a Incorrect Calculation of Buffer Size vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to memory crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37073 MEDIUM

There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the detection result is tampered with.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37074 HIGH

There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the user root privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37075 MEDIUM

There is a Credentials Management Errors vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to confidentiality affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 10.1.0
huawei harmonyos *
huawei magic_ui 3.1.0
CVE-2021-37076 MEDIUM

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37077 HIGH

There is a NULL Pointer Dereference vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to kernel crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37078 MEDIUM

There is a Uncaught Exception vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to remote Denial of Service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37079 MEDIUM

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete arbitrary file by system_app permission.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37080 MEDIUM

There is a Incomplete Cleanup vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-459,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37081 MEDIUM

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to nearby crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37082 MEDIUM

There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to motionhub crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37083 MEDIUM

There is a NULL Pointer Dereference vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to Denial of Service Attacks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37084 HIGH

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to malicious invoking other functions of the Smart Assistant through text messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37085 HIGH

There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37086 MEDIUM

There is a Improper Preservation of Permissions vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers which can isolate and read synchronization files of other applications across the UID sandbox.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N 3.9 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-281,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37087 MEDIUM

There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers can create arbitrary file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37088 MEDIUM

There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers can write any content to any file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37089 HIGH

There is a Incomplete Cleanup vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to kernel restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-459,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37090 MEDIUM

There is a Out-of-bounds Read vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to process crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37091 MEDIUM

There is a Permissions,Privileges,and Access Controls vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to confidentiality affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37092 MEDIUM

There is a Incomplete Cleanup vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-459,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37093 MEDIUM

There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers steal short messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37094 MEDIUM

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to system denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37095 HIGH

There is a Integer Overflow or Wraparound vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to remote denial of service and potential remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37096 MEDIUM

There is a Improper Input Validation vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to user privacy disclosed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37097 HIGH

There is a Code Injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to system restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37098 MEDIUM

Hilinksvc service exists a Data Processing Errors vulnerability .Successful exploitation of this vulnerability may cause application crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37099 MEDIUM

There is a Path Traversal vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to delete any file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37100 MEDIUM

There is a Improper Authentication vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to account authentication bypassed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37101 HIGH

There is an improper authorization vulnerability in AIS-BW50-00 9.0.6.2(H100SP10C00) and 9.0.6.2(H100SP15C00). Due to improper authorization mangement, an attakcer can exploit this vulnerability by physical accessing the device and implant malicious code. Successfully exploit could leads to arbitrary code execution in the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei ais-bw50-00_firmware 9.0.6.2(h100sp15c00)
huawei ais-bw50-00_firmware 9.0.6.2(h100sp10c00)
CVE-2021-37102 HIGH

There is a command injection vulnerability in CMA service module of FusionCompute product when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands to the system. Affected product versions include: FusionCompute 6.0.0, 6.3.0, 6.3.1, 6.5.0, 6.5.1, 8.0.0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
huawei fusioncompute 6.5.1
huawei fusioncompute 6.3.0
huawei fusioncompute 6.5.0
huawei fusioncompute 6.0.0
huawei fusioncompute 6.3.1
CVE-2021-37103 LOW

There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37104 MEDIUM

There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3). This vulnerability is due to insufficient validation of parameters while dealing with some messages. A successful exploit could allow the attacker to gain access to certain resource which the attacker are supposed not to do.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-918,

Products Affected

Vendor Product Version
huawei p40_firmware 10.1.0.118(c00e116r3p3)
CVE-2021-37105 MEDIUM

There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0. Due to the improper verification of file to be uploaded and does not strictly restrict the file access path, attackers may upload malicious files to the device, resulting in the service abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
huawei fusioncompute 6.5.1
huawei fusioncompute 6.5.0
CVE-2021-37106 HIGH

There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file. The software constructs part of a command using external special input from users, but the software does not sufficiently validate the user input. Successful exploit could allow the attacker to inject certain commands to the system.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei fusioncompute 8.0.0
huawei fusioncompute 6.3.0
huawei fusioncompute 6.5.0
huawei fusioncompute 6.3.1
CVE-2021-37107 LOW

There is an improper memory access permission configuration on ACPU.Successful exploitation of this vulnerability may cause out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-37109 MEDIUM

There is a security protection bypass vulnerability with the modem.Successful exploitation of this vulnerability may cause memory protection failure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-37110 MEDIUM

There is a Timing design defects in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-37111 MEDIUM

There is a Memory leakage vulnerability in Smartphone.Successful exploitation of this vulnerability may cause memory exhaustion.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-770,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei harmonyos *
huawei magic_ui 3.1.0
CVE-2021-37112 MEDIUM

Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37113 MEDIUM

There is a Privilege escalation vulnerability with the file system component in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-37114 MEDIUM

There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei harmonyos *
CVE-2021-37115 LOW

There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-37116 MEDIUM

PCManager has a Weaknesses Introduced During Design vulnerability .Successful exploitation of this vulnerability may cause that the PIN of the subscriber is changed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37117 MEDIUM

There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37118 MEDIUM

The HwNearbyMain module has a Improper Handling of Exceptional Conditions vulnerability.Successful exploitation of this vulnerability may lead to message leak.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37119 MEDIUM

There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.0
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37120 HIGH

There is a Double free vulnerability in Smartphone.Successful exploitation of this vulnerability may cause a kernel crash or privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei magic_ui 3.1.0
CVE-2021-37121 HIGH

There is a Configuration defects in Smartphone.Successful exploitation of this vulnerability may elevate the MEID (IMEI) permission.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-37122 LOW

There is a use-after-free (UAF) vulnerability in Huawei products. An attacker may craft specific packets to exploit this vulnerability. Successful exploitation may cause the service abnormal. Affected product versions include:CloudEngine 12800 V200R005C10SPC800,V200R019C00SPC800;CloudEngine 5800 V200R005C10SPC800,V200R019C00SPC800;CloudEngine 6800 V200R005C10SPC800,V200R005C20SPC800,V200R019C00SPC800;CloudEngine 7800 V200R005C10SPC800,V200R019C00SPC800.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_5800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r005c10spc800
CVE-2021-37123 HIGH

There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200. The vulnerability is due to that when an user wants to do certain operation, the software does not insufficiently validate the user's identity. Successful exploit could allow the attacker to do certain operations which the user are supposed not to do.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei hero-ct060_firmware *
CVE-2021-37124 LOW

There is a path traversal vulnerability in Huawei PC product. Because the product does not filter path with special characters,attackers can construct a file path with special characters to exploit this vulnerability. Successful exploitation could allow the attacker to transport a file to certain path.Affected product versions include:PC Smart Full Scene 11.1 versions PCManager 11.1.1.97.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei pcmanager 11.1.1.97
huawei pc_smart_full_scene 11.1
CVE-2021-37125 MEDIUM

Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability .Successful exploitation of this vulnerability may cause confidentiality is affected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37126 MEDIUM

Arbitrary file has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability .Successful exploitation of this vulnerability may cause the directory is traversed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37127 HIGH

There is a signature management vulnerability in some huawei products. An attacker can forge signature and bypass the signature check. During firmware update process, successful exploit this vulnerability can cause the forged system file overwrite the correct system file. Affected product versions include:iManager NetEco V600R010C00CP2001,V600R010C00CP2002,V600R010C00SPC100,V600R010C00SPC110,V600R010C00SPC120,V600R010C00SPC200,V600R010C00SPC210,V600R010C00SPC300;iManager NetEco 6000 V600R009C00SPC100,V600R009C00SPC110,V600R009C00SPC120,V600R009C00SPC190,V600R009C00SPC200,V600R009C00SPC201,V600R009C00SPC202,V600R009C00SPC210.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-347,

Products Affected

Vendor Product Version
huawei imanager_neteco_firmware v600r009c00spc202
huawei imanager_neteco_firmware v600r009c00spc100
huawei imanager_neteco_6000_firmware v600r010c00spc110
huawei imanager_neteco_6000_firmware v600r010c00spc200
huawei imanager_neteco_firmware v600r009c00spc210
huawei imanager_neteco_firmware v600r009c00spc201
huawei imanager_neteco_firmware v600r009c00spc190
huawei imanager_neteco_6000_firmware v600r010c00spc120
huawei imanager_neteco_6000_firmware v600r010c00spc210
huawei imanager_neteco_6000_firmware v600r010c00cp2002
huawei imanager_neteco_6000_firmware v600r010c00cp2001
huawei imanager_neteco_6000_firmware v600r010c00spc300
huawei imanager_neteco_firmware v600r009c00spc120
huawei imanager_neteco_firmware v600r009c00spc110
huawei imanager_neteco_6000_firmware v600r010c00spc100
huawei imanager_neteco_firmware v600r009c00spc200
CVE-2021-37128 HIGH

HwPCAssistant has a Path Traversal vulnerability .Successful exploitation of this vulnerability may write any file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37129 MEDIUM

There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not properly verify input parameter. Successful exploit could cause out of bounds write leading to a denial of service condition.Affected product versions include:IPS Module V500R005C00,V500R005C20;NGFW Module V500R005C00;NIP6600 V500R005C00,V500R005C20;S12700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600,V200R013C00SPC500,V200R019C00SPC200,V200R019C00SPC500,V200R019C10SPC200,V200R020C00,V200R020C10;S1700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;S2700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;S5700 V200R010C00SPC600,V200R010C00SPC700,V200R011C10SPC500,V200R011C10SPC600,V200R019C00SPC500;S6700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;S7700 V200R010C00SPC600,V200R010C00SPC700,V200R011C10SPC500,V200R011C10SPC600;S9700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;USG9500 V500R005C00,V500R005C20.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei s9700_firmware v200r011c10spc600
huawei s12700_firmware v200r019c10spc200
huawei s2700_firmware v200r011c10spc600
huawei s12700_firmware v200r011c10spc500
huawei s6700_firmware v200r011c10spc600
huawei s7700_firmware v200r011c10spc600
huawei s12700_firmware v200r019c00spc200
huawei s9700_firmware v200r010c00spc600
huawei usg9500_firmware v500r005c00
huawei s12700_firmware v200r020c00
huawei s12700_firmware v200r020c10
huawei s2700_firmware v200r011c10spc500
huawei s5700_firmware v200r010c00spc700
huawei s6700_firmware v200r010c00spc600
huawei s1700_firmware v200r011c10spc600
huawei s12700_firmware v200r019c00spc500
huawei s7700_firmware v200r010c00spc700
huawei usg9500_firmware v500r005c20
huawei s1700_firmware v200r010c00spc600
huawei ips_module_firmware v500r005c00
huawei s12700_firmware v200r010c00spc600
huawei s5700_firmware v200r011c10spc500
huawei s5700_firmware v200r019c00spc500
huawei nip6600_firmware v500r005c20
huawei nip6600_firmware v500r005c00
huawei s12700_firmware v200r013c00spc500
huawei ips_module_firmware v500r005c20
huawei s12700_firmware v200r011c10spc600
huawei s5700_firmware v200r010c00spc600
huawei s6700_firmware v200r011c10spc500
huawei s7700_firmware v200r010c00spc600
huawei ngfw_module_firmware v500r005c00
huawei s9700_firmware v200r011c10spc500
huawei s1700_firmware v200r011c10spc500
huawei s5700_firmware v200r011c10spc600
huawei s2700_firmware v200r010c00spc600
huawei s7700_firmware v200r011c10spc500
CVE-2021-37130 MEDIUM

There is a path traversal vulnerability in Huawei FusionCube 6.0.2.The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a directory that is located underneath a restricted parent directory, but the software does not properly validate the pathname. Successful exploit could allow the attacker to access a location that is outside of the restricted directory by a crafted filename.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei fusioncube_firmware 6.0.2
CVE-2021-37131 MEDIUM

There is a CSV injection vulnerability in ManageOne, iManager NetEco and iManager NetEco 6000. An attacker with high privilege may exploit this vulnerability through some operations to inject the CSV files. Due to insufficient input validation of some parameters, the attacker can exploit this vulnerability to inject CSV files to the target device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-1236,

Products Affected

Vendor Product Version
huawei imanager_neteco v600r010c00cp3101
huawei imanager_neteco v600r010c00spc200
huawei imanager_neteco_6000 v600r009c00spc120
huawei imanager_neteco v600r010c00cp3002
huawei imanager_neteco v600r010c00spc120
huawei imanager_neteco_6000 v600r009c00spc100
huawei imanager_neteco v600r010c00spc110
huawei imanager_neteco v600r010c00cp2002
huawei manageone 6.5.1
huawei imanager_neteco v600r010c00spc100
huawei imanager_neteco_6000 v600r009c00spc230
huawei manageone 8.0.0
huawei imanager_neteco v600r010c00cp3001
huawei imanager_neteco_6000 v600r009c00cp2301
huawei imanager_neteco_6000 v600r009c00spc221
huawei manageone 8.0.1
huawei imanager_neteco v600r010c00spc310
huawei imanager_neteco_6000 v600r009c00spc190
huawei imanager_neteco v600r010c00cp3102
huawei imanager_neteco_6000 v600r009c00spc202
huawei imanager_neteco_6000 v600r009c00spc110
huawei imanager_neteco_6000 v600r009c00spc210
huawei imanager_neteco_6000 v600r009c00spc232
huawei imanager_neteco v600r010c00spc210
huawei imanager_neteco v600r010c00spc300
huawei imanager_neteco_6000 v600r009c00spc201
huawei imanager_neteco_6000 v600r009c00cp2201
huawei imanager_neteco_6000 v600r009c00spc200
huawei manageone 6.5.1.1
huawei imanager_neteco v600r010c00cp2001
huawei imanager_neteco_6000 v600r009c00spc220
CVE-2021-37132 MEDIUM

PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability .Successful exploitation of this vulnerability may cause that Third-party apps can obtain the complete list of Harmony apps without permission.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-37133 MEDIUM

There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-37134 MEDIUM

Location-related APIs exists a Race Condition vulnerability.Successful exploitation of this vulnerability may use Higher Permissions for invoking the interface of location-related components.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39966 MEDIUM

There is an Uninitialized AOD driver structure in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-909,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-39967 MEDIUM

There is a Vulnerability of obtaining broadcast information improperly due to improper broadcast permission settings in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-39968 MEDIUM

Changlian Blocklist has a Business Logic Errors vulnerability .Successful exploitation of this vulnerability may expand the attack surface of the message class.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39969 MEDIUM

There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-39970 MEDIUM

HwPCAssistant has a Improper Input Validation vulnerability.Successful exploitation of this vulnerability may create any file with the system app permission.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39971 MEDIUM

Password vault has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-668,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39972 MEDIUM

MyHuawei-App has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could compromise confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39973 HIGH

There is a Null pointer dereference in Smartphones.Successful exploitation of this vulnerability may cause the kernel to break down.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-39974 MEDIUM

There is an Out-of-bounds read in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei emui 10.1.0
huawei harmonyos *
huawei magic_ui 3.1.0
CVE-2021-39975 MEDIUM

Hilinksvc has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause denial of service attacks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39976 HIGH

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege restrictions, an authenticated local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei cloudengine_5800_firmware v200r020c00spc600
CVE-2021-39977 MEDIUM

The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39978 MEDIUM

Telephony application has a SQL Injection vulnerability.Successful exploitation of this vulnerability may cause privacy and security issues.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39979 HIGH

HHEE system has a Code Injection vulnerability.Successful exploitation of this vulnerability may affect HHEE system integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39980 MEDIUM

Telephony application has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could lead to sensitive information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-39981 MEDIUM

Chang Lian application has a vulnerability which can be maliciously exploited to hide the calling number.Successful exploitation of this vulnerability allows you to make an anonymous call.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-39982 MEDIUM

Phone Manager application has a Improper Privilege Management vulnerability.Successful exploitation of this vulnerability may read and write arbitrary files by tampering with Phone Manager notifications.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-39983 MEDIUM

The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-39984 MEDIUM

Huawei idap module has a Out-of-bounds Read vulnerability.Successful exploitation of this vulnerability may cause Denial of Service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-125,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-39985 MEDIUM

The HwNearbyMain module has a Improper Validation of Array Index vulnerability.Successful exploitation of this vulnerability may cause a process to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-129,CWE-129,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39986 LOW

There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-39987 MEDIUM

The HwNearbyMain module has a Data Processing Errors vulnerability.Successful exploitation of this vulnerability may cause a process to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-843,CWE-843,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39988 MEDIUM

The HwNearbyMain module has a NULL Pointer Dereference vulnerability.Successful exploitation of this vulnerability may cause a process to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39989 MEDIUM

The HwNearbyMain module has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability may cause a process to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-704,CWE-704,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39990 HIGH

The screen lock module has a Stack-based Buffer Overflow vulnerability.Successful exploitation of this vulnerability may affect user experience.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-39991 LOW

There is an unauthorized rewriting vulnerability with the memory access management module on ACPU.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-39992 MEDIUM

There is an improper security permission configuration vulnerability on ACPU.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-39993 HIGH

There is an Integer overflow vulnerability with ACPU in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-39994 HIGH

There is an arbitrary address access vulnerability with the product line test code.Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-39995 MEDIUM

Some Huawei products use the OpenHpi software for hardware management. A function that parses data returned by OpenHpi contains an out-of-bounds read vulnerability that could lead to a denial of service. Affected product versions include: eCNS280_TD V100R005C10; eSE620X vESS V100R001C10SPC200, V100R001C20SPC200, V200R001C00SPC300.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei ese620x_vess_firmware v200r001c00spc300
huawei ecns280_td_firmware v100r005c10
huawei ese620x_vess_firmware v100r001c10spc200
huawei ese620x_vess_firmware v100r001c20spc200
CVE-2021-39996 HIGH

There is a Heap-based buffer overflow vulnerability with the NFC module in smartphones. Successful exploitation of this vulnerability may cause memory overflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-39997 HIGH

There is a vulnerability of unstrict input parameter verification in the audio assembly.Successful exploitation of this vulnerability may cause out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-39998 HIGH

There is Vulnerability of APIs being concurrently called for multiple times in HwConnectivityExService a in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-39999 HIGH

There is a buffer overflow vulnerability in eSE620X vESS V100R001C10SPC200 and V100R001C20SPC200. An attacker can exploit this vulnerability by sending a specific message to the target device due to insufficient validation of packets. Successful exploit could cause a denial of service condition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei ese620x_vess_firmware v100r001c10spc200
huawei ese620x_vess_firmware v100r001c20spc200
CVE-2021-40000 MEDIUM

The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40001 MEDIUM

The CaasKit module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause the MeeTime application to be unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40002 MEDIUM

The Bluetooth module has an out-of-bounds write vulnerability. Successful exploitation of this vulnerability may result in malicious command execution at the remote end.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40003 MEDIUM

HwPCAssistant has a path traversal vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40004 MEDIUM

The cellular module has a vulnerability in permission management. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40005 MEDIUM

The distributed data service component has a vulnerability in data access control. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40006 LOW

Vulnerability of design defects in the security algorithm component. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-254,CWE-327,

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2021-40007 MEDIUM

There is an information leak vulnerability in eCNS280_TD V100R005C10SPC650. The vulnerability is caused by improper log output management. An attacker with the ability to access the log file of device may lead to information disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-116,

Products Affected

Vendor Product Version
huawei ecns280_td_firmware v100r005c10spc650
CVE-2021-40008 MEDIUM

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary messages, which could consume remaining memory. Successful exploit could cause memory exhaust.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-772,

Products Affected

Vendor Product Version
huawei cloudengine_12800_firmware v200r019c00spc800
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r019c00spc800
CVE-2021-40009 MEDIUM

There is an Out-of-bounds write vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-40010 HIGH

The bone voice ID TA has a heap overflow vulnerability.Successful exploitation of this vulnerability may result in malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40011 MEDIUM

There is an uncontrolled resource consumption vulnerability in the display module. Successful exploitation of this vulnerability may affect integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei emui 9.1.1
huawei magic_ui 2.1.1
huawei emui 9.1.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-40012 MEDIUM

Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-40013 LOW

Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-40014 MEDIUM

The bone voice ID trusted application (TA) has a heap overflow vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40015 LOW

There is a race condition vulnerability in the binder driver subsystem in the kernel.Successful exploitation of this vulnerability may affect kernel stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40016 LOW

Improper permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability will affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-40017

The HW_KEYMASTER module lacks the validity check of the key format. Successful exploitation of this vulnerability may result in out-of-bounds memory access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-40018 MEDIUM

The eID module has a null pointer reference vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40019

Out-of-bounds heap read vulnerability in the HW_KEYMASTER module. Successful exploitation of this vulnerability may cause out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
CVE-2021-40020 MEDIUM

There is an Out-of-bounds array read vulnerability in the security storage module in smartphones. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40021 MEDIUM

The eID module has an out-of-bounds memory write vulnerability,Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40022 MEDIUM

The weaver module has a vulnerability in parameter type verification,Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40023

Configuration defects in the secure OS module. Successful exploitation of this vulnerability will affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2021-40024

Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-40025 MEDIUM

The eID module has a vulnerability that causes the memory to be used without being initialized,Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-665,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40026 MEDIUM

There is a Heap-based buffer overflow vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-40027 MEDIUM

The bone voice ID TA has a vulnerability in calculating the buffer length,Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,CWE-119,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40028 MEDIUM

The eID module has an out-of-bounds memory write vulnerability,Successful exploitation of this vulnerability may affect data integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40029 MEDIUM

There is a Buffer overflow vulnerability due to a boundary error with the Samba server in the file management module in smartphones. Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40030

The My HUAWEI app has a defect in the design. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40031 MEDIUM

There is a Null pointer dereference vulnerability in the camera module in smartphones. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
CVE-2021-40032 MEDIUM

The bone voice ID TA has a vulnerability in information management,Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40033 LOW

There is an information exposure vulnerability on several Huawei Products. The vulnerability is due to that the software does not properly protect certain information. Successful exploit could cause information disclosure. Affected product versions include: CloudEngine 12800 V200R005C10SPC800; CloudEngine 5800 V200R005C10SPC800, V200R019C00SPC800; CloudEngine 6800 V200R005C10SPC800, V200R005C20SPC800, V200R019C00SPC800; CloudEngine 7800 V200R005C10SPC800, V200R019C00SPC800.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cloudengine_7800_firmware v200r019c00spc800
huawei cloudengine_6800_firmware v200r005c10spc800
huawei cloudengine_6800_firmware v200r019c00spc800
huawei cloudengine_12800_firmware v200r005c10spc800
huawei cloudengine_6800_firmware v200r005c20spc800
huawei cloudengine_5800_firmware v200r019c00spc800
huawei cloudengine_5800_firmware v200r005c10spc800
huawei cloudengine_7800_firmware v200r005c10spc800
CVE-2021-40034

The video framework has the memory overwriting vulnerability caused by addition overflow. Successful exploitation of this vulnerability may affect the availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40035 MEDIUM

There is a Buffer overflow vulnerability due to a boundary error with the Samba server in the file management module in smartphones. Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40036 HIGH

The bone voice ID TA has a memory overwrite vulnerability. Successful exploitation of this vulnerability may result in malicious code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2021-40037 MEDIUM

There is a Vulnerability of accessing resources using an incompatible type (type confusion) in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-843,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40038 MEDIUM

There is a Double free vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-40039 MEDIUM

There is a Null pointer dereference vulnerability in the camera module in smartphones. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-40040

Vulnerability of writing data to an arbitrary address in the HW_KEYMASTER module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40041 LOW

There is a Cross-Site Scripting(XSS) vulnerability in HUAWEI WS318n product when processing network settings. Due to insufficient validation of user input, a local authenticated attacker could exploit this vulnerability by injecting special characters. Successful exploit could cause certain information disclosure. Affected product versions include: WS318n-21 10.0.2.2, 10.0.2.5 and 10.0.2.6.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.1 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
huawei ws318n-21_firmware 10.0.2.5
huawei ws318n-21_firmware 10.0.2.6
huawei ws318n-21_firmware 10.0.2.2
CVE-2021-40042 MEDIUM

There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal. Affected product versions include: CloudEngine 12800 V200R019C10SPC800, V200R019C10SPC900; CloudEngine 5800 V200R019C10SPC800, V200R020C00SPC600; CloudEngine 6800 versions V200R019C10SPC800, V200R019C10SPC900, V200R020C00SPC600, V300R020C00SPC200; CloudEngine 7800 V200R019C10SPC800.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-763,

Products Affected

Vendor Product Version
huawei cloudengine_6800_firmware v300r020c00spc200
huawei cloudengine_12800_firmware v200r019c10spc800
huawei cloudengine_5800_firmware v200r019c10spc800
huawei cloudengine_6800_firmware v200r019c10spc800
huawei cloudengine_7800_firmware v200r019c10spc800
huawei cloudengine_12800_firmware v200r019c10spc900
huawei cloudengine_5800_firmware v200r020c00spc600
huawei cloudengine_6800_firmware v200r019c10spc900
huawei cloudengine_6800_firmware v200r020c00spc600
CVE-2021-40043 MEDIUM

The laser command injection vulnerability exists on AIS-BW80H-00 versions earlier than AIS-BW80H-00 9.0.3.4(H100SP13C00). The devices cannot effectively defend against external malicious interference. Attackers need the device to be visually exploitable and successful triggering of this vulnerability could execute voice commands on the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
huawei ais-bw80h-00_firmware *
CVE-2021-40044 MEDIUM

There is a permission verification vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may cause unauthorized operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-40045 LOW

There is a vulnerability of signature verification mechanism failure in system upgrade through recovery mode.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-347,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos *
CVE-2021-40046 HIGH

PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could allow the attacker to access certain resource beyond its privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei pcmanager 11.1.1.95
CVE-2021-40047 HIGH

There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-401,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40048 HIGH

There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-131,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40049 MEDIUM

There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40050 HIGH

There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this vulnerability may cause stack overflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40051 MEDIUM

There is an unauthorized access vulnerability in system components. Successful exploitation of this vulnerability will affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40052 HIGH

There is an incorrect buffer size calculation vulnerability in the video framework.Successful exploitation of this vulnerability may affect availability.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-131,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-40053 MEDIUM

There is a permission control vulnerability in the Nearby module.Successful exploitation of this vulnerability will affect availability and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40054 HIGH

There is an integer underflow vulnerability in the atcmdserver module. Successful exploitation of this vulnerability may affect integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-191,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40055 HIGH

There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N 2.2 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40056 HIGH

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40057 HIGH

There is a heap-based and stack-based buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-40058 HIGH

There is a heap-based buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei magic_ui 3.1.0
CVE-2021-40059 LOW

There is a permission control vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2021-40060 HIGH

There is a heap-based buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei magic_ui 3.1.0
CVE-2021-40061 MEDIUM

There is a vulnerability of accessing resources using an incompatible type (type confusion) in the Bastet module. Successful exploitation of this vulnerability may affect integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-843,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40062 HIGH

There is a vulnerability of copying input buffer without checking its size in the video framework. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei magic_ui 3.1.0
CVE-2021-40063 MEDIUM

There is an improper access control vulnerability in the video module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40064 HIGH

There is a heap-based buffer overflow vulnerability in system components. Successful exploitation of this vulnerability may affect system stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-40065 MEDIUM

The communication module has a service logic error vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2021-46740 MEDIUM

The device authentication service module has a defect vulnerability introduced in the design process.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46741 MEDIUM

The basic framework and setting module have defects, which were introduced during the design. Successful exploitation of this vulnerability may affect system integrity.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-46742 MEDIUM

The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of this vulnerability may affect the availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-46785 MEDIUM

The Property module has a vulnerability in permission control.This vulnerability can be exploited to obtain the unique device identifier.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46786 HIGH

The audio module has a vulnerability in verifying the parameters passed by the application space.Successful exploitation of this vulnerability may cause out-of-bounds memory access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-46787 MEDIUM

The AMS module has a vulnerability of improper permission control.Successful exploitation of this vulnerability may cause non-system application processes to crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-46788 MEDIUM

Third-party pop-up window coverage vulnerability in the iConnect module.Successful exploitation of this vulnerability may cause system pop-up window may be covered to mislead users to perform incorrect operations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-46789 MEDIUM

Configuration defects in the secure OS module. Successful exploitation of this vulnerability can affect availability.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
CVE-2021-46811 MEDIUM

HwSEServiceAPP has a vulnerability in permission management. Successful exploitation of this vulnerability may cause disclosure of the Card Production Life Cycle (CPLC) information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-46812 MEDIUM

The Device Manager has a vulnerability in multi-device interaction. Successful exploitation of this vulnerability may affect data integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46813 MEDIUM

Vulnerability of residual files not being deleted after an update in the ChinaDRM module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-212,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2021-46814 MEDIUM

The video framework has an out-of-bounds memory read/write vulnerability. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2021-46834

A permission bypass vulnerability in Huawei cross device task management could allow an attacker to access certain resource in the attacked devices. Affected product versions include:JAD-AL50 versions 102.0.0.225(C00E220R3P4).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei jad-al50_firmware 102.0.0.225(c00e220r3p4)
CVE-2021-46835

There is a traffic hijacking vulnerability in WS7200-10 11.0.2.13. Successful exploitation of this vulnerability can cause packets to be hijacked by attackers.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

Products Affected

Vendor Product Version
huawei ws7200-10_firmware 11.0.2.13
CVE-2021-46836

Implementation of the WLAN module interfaces has the information disclosure vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46839

The HW_KEYMASTER module has a vulnerability of missing bounds check on length.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46840

The HW_KEYMASTER module has an out-of-bounds access vulnerability in parameter set verification.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46851

The DRM module has a vulnerability in verifying the secure memory attributes. Successful exploitation of this vulnerability may cause abnormal video playback.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46852

The memory management module has the logic bypass vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46856

The multi-screen collaboration module has a path traversal vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2021-46867

The HW_KEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bounds memory access.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2021-46868

The HW_KEYMASTER module has a problem in releasing memory.Successful exploitation of this vulnerability may result in out-of-bounds memory access.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2021-46881

The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 12.0.1
CVE-2021-46882

The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 12.0.1
CVE-2021-46883

The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 12.0.1
CVE-2021-46884

The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 12.0.1
CVE-2021-46885

The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 12.0.1
CVE-2021-46886

The video framework has memory overwriting caused by addition overflow. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 12.0.1
CVE-2021-46887

Lack of length check vulnerability in the HW_KEYMASTER module. Successful exploitation of this vulnerability may cause out-of-bounds read.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.0
CVE-2021-46890

Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46891

Vulnerability of incomplete read and write permission verification in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46892

Encryption bypass vulnerability in Maintenance mode. Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
CVE-2021-46893

Vulnerability of unstrict data verification and parameter check. Successful exploitation of this vulnerability may affect integrity.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2021-46894

Use After Free (UAF) vulnerability in the uinput module.Successful exploitation of this vulnerability may lead to kernel privilege escalation.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
CVE-2021-46895

Vulnerability of defects introduced in the design process in the Multi-Device Task Center. Successful exploitation of this vulnerability will cause the hopped app to bypass the app lock and reset the device that initiates the hop.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
CVE-2022-22252 HIGH

The DFX module has a UAF vulnerability.Successful exploitation of this vulnerability may affect system stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-22253 MEDIUM

The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-354,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-22254 MEDIUM

A permission bypass vulnerability exists when the NFC CAs access the TEE.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-22255 MEDIUM

The application framework has a common DoS vulnerability.Successful exploitation of this vulnerability may affect the availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-22256 MEDIUM

The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-22257 MEDIUM

The customization framework has a vulnerability of improper permission control.Successful exploitation of this vulnerability may affect data integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-22258 HIGH

The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-22259 HIGH

There is an improper authentication vulnerability in FLMG-10 10.0.1.0(H100SP22C00). Successful exploitation of this vulnerability may lead to a control of the victim device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
huawei flmg-10_firmware 10.0.1.0(h100sp22c00)
CVE-2022-22260 MEDIUM

The kernel module has a UAF vulnerability.Successful exploitation of this vulnerability will affect data integrity and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-22261 MEDIUM

The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29789 MEDIUM

The HiAIserver has a vulnerability in verifying the validity of the properties used in the model.Successful exploitation of this vulnerability will affect AI services.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29790 MEDIUM

The graphics acceleration service has a vulnerability in multi-thread access to the database.Successful exploitation of this vulnerability may cause service exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29791 MEDIUM

The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29792 MEDIUM

The chip component has a vulnerability of disclosing CPU SNs.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29793 MEDIUM

There is a configuration defect in the activation lock of mobile phones.Successful exploitation of this vulnerability may affect application availability.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-29794 HIGH

The frame scheduling module has a Use After Free (UAF) vulnerability.Successful exploitation of this vulnerability will affect data integrity, availability, and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29795 MEDIUM

The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29796 MEDIUM

The HiAIserver has a vulnerability in verifying the validity of the weight used in the model.Successful exploitation of this vulnerability will affect AI services.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-29797 HIGH

There is a buffer overflow vulnerability in CV81-WDM FW 01.70.49.29.46. Successful exploitation of this vulnerability may lead to privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei cv81-wdm_firmware 01.70.49.29.46
CVE-2022-29798 HIGH

There is a denial of service vulnerability in CV81-WDM FW versions 01.70.49.29.46. Successful exploitation could cause denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei cv81-wdm_firmware 01.70.49.29.46
CVE-2022-31751 MEDIUM

The kernel emcom module has multi-thread contention. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31752 LOW

Missing authorization vulnerability in the system components. Successful exploitation of this vulnerability will affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-862,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
CVE-2022-31753 MEDIUM

The voice wakeup module has a vulnerability of using externally-controlled format strings. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-134,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31754 MEDIUM

Logical defects in code implementation in some products. Successful exploitation of this vulnerability may affect the availability of some features.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
CVE-2022-31755 LOW

The communication module has a vulnerability of improper permission preservation. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-281,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31756 LOW

The fingerprint sensor module has design defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31757 MEDIUM

The setting module has a vulnerability of improper use of APIs. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31758 LOW

The kernel module has the race condition vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N 1.0 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-362,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31759 LOW

AppLink has a vulnerability of accessing uninitialized pointers. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-824,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31760 MEDIUM

Dialog boxes can still be displayed even if the screen is locked in carrier-customized USSD services. Successful exploitation of this vulnerability may affect data integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31761 MEDIUM

Configuration defects in the secure OS module. Successful exploitation of this vulnerability will affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.0
CVE-2022-31762 MEDIUM

The AMS module has a vulnerability in input validation. Successful exploitation of this vulnerability may cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-31763 MEDIUM

The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-32144

There is an insufficient input verification vulnerability in Huawei product. Successful exploitation of this vulnerability may lead to service abnormal. (Vulnerability ID: HWPSIRT-2022-76192) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2022-32144.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.6 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H 3.9 4.7

Products Affected

Vendor Product Version
huawei cv81-wdm_firmware 01.70.49.29.46
CVE-2022-32203

There is a command injection vulnerability in Huawei terminal printer product. Successful exploitation could result in the highest privileges of the printer. (Vulnerability ID: HWPSIRT-2022-51773) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2022-32203.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei cv81-wdm_firmware 01.70.49.29.46
CVE-2022-32204

There is an improper input verification vulnerability in Huawei printer product. Successful exploitation of this vulnerability may cause service abnormal. (Vulnerability ID: HWPSIRT-2022-87185) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2022-32204.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei cv81-wdm_firmware 01.70.49.29.46
CVE-2022-33735

There is a password verification vulnerability in WS7200-10 11.0.2.13. Attackers on the LAN may use brute force cracking to obtain passwords, which may cause sensitive system information to be disclosed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
huawei ws7200-10_firmware 11.0.2.13
CVE-2022-34159

Huawei printers have an input verification vulnerability. Successful exploitation of this vulnerability may cause device service exceptions. (Vulnerability ID: HWPSIRT-2022-80078) This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2022-34159.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei cv81-wdm_firmware 01.70.49.29.46
CVE-2022-34735 HIGH

The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-34736 HIGH

The frame scheduling module has a null pointer dereference vulnerability. Successful exploitation of this vulnerability will affect the kernel availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-476,

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-34737 MEDIUM

The application security module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may affect data integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-34738 MEDIUM

The SystemUI module has a vulnerability in permission control. If this vulnerability is successfully exploited, users are unaware of the service running in the background.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-34739 MEDIUM

The fingerprint module has a vulnerability of overflow in arithmetic addition. Successful exploitation of this vulnerability may result in the acquisition of data from unknown addresses in address mappings.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-34740 LOW

The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability may cause exceptions in NFC card registration, deletion, and activation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-34741 LOW

The NFC module has a buffer overflow vulnerability. Successful exploitation of this vulnerability may cause exceptions in NFC card registration, deletion, and activation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-120,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-34742 MEDIUM

The system module has a read/write vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,CWE-787,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-34743 MEDIUM

The AT commands of the USB port have an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-37001

The diag-router module has a vulnerability in intercepting excessive long and short instructions. Successful exploitation of this vulnerability will cause the diag-router module to crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2022-37002

The SystemUI module has a privilege escalation vulnerability. Successful exploitation of this vulnerability can cause malicious applications to pop up windows or run in the background.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-37003

The AOD module has a vulnerability in permission assignment. Successful exploitation of this vulnerability may cause permission escalation and unauthorized access to files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-37004

The Settings application has a vulnerability of bypassing the out-of-box experience (OOBE). Successful exploitation of this vulnerability may affect the availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei magic_ui 3.0.0
huawei emui 10.1.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei emui 10.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-37005

The Settings application has an argument injection vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-37006

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-37007

The chinadrm module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect the availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-37008

The recovery module has a vulnerability of bypassing the verification of an update package before use. Successful exploitation of this vulnerability may affect system stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-37395

A Huawei device has an input verification vulnerability. Successful exploitation of this vulnerability may lead to DoS attacks.Affected product versions include:CV81-WDM FW versions 01.70.49.29.46.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei cv81-wdm_fw_firmware 01.70.49.29.46
CVE-2022-38977

The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 2.0
CVE-2022-38978

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38979

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38980

The HwAirlink module has a heap overflow vulnerability in processing data packets of the proprietary protocol.Successful exploitation of this vulnerability may allow attackers to obtain process control permissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 2.0
CVE-2022-38981

The HwAirlink module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause information leakage.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 2.0
CVE-2022-38982

The fingerprint module has service logic errors.Successful exploitation of this vulnerability will cause the phone lock to be cracked.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2022-38983

The BT Hfp Client module has a Use-After-Free (UAF) vulnerability.Successful exploitation of this vulnerability may result in arbitrary code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38984

The HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38985

The facial recognition module has a vulnerability in input validation.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38986

The HIPP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause out-of-bounds access to the HIPP module and page table tampering, affecting device confidentiality and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38987

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38988

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38989

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38990

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38991

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38992

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38993

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38994

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38995

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38996

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38997

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei magic_ui 3.1.1
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 12.0.0
huawei emui 11.0.0
huawei magic_ui 3.1.0
huawei harmonyos 2.0
CVE-2022-38998

The HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability will cause out-of-bounds read, which affects data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-38999

The AOD module has the improper update of reference count vulnerability. Successful exploitation of this vulnerability may affect data integrity, confidentiality, and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-39000

The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-39001

The number identification module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause data disclosure.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-39002

Double free vulnerability in the storage module. Successful exploitation of this vulnerability will cause the memory to be freed twice.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-39003

Buffer overflow vulnerability in the video framework. Successful exploitation of this vulnerability will affect the confidentiality and integrity of trusted components.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei magic_ui 4.0.0
huawei emui 11.0.0
CVE-2022-39004

The MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-39005

The MPTCP module has the memory leak vulnerability. Successful exploitation of this vulnerability can cause memory leaks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-39006

The MPTCP module has the race condition vulnerability. Successful exploitation of this vulnerability may cause the device to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei magic_ui 4.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 11.0.0
huawei harmonyos 2.0
CVE-2022-39007

The location module has a vulnerability of bypassing permission verification.Successful exploitation of this vulnerability may cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-39008

The NFC module has bundle serialization/deserialization vulnerabilities. Successful exploitation of this vulnerability may cause third-party apps to read and write files that are accessible only to system apps.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-39009

The WLAN module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause third-party apps to affect WLAN functions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-39010

The HwChrService module has a vulnerability in permission control. Successful exploitation of this vulnerability may cause disclosure of user network information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-39011

The HISP module has a vulnerability of bypassing the check of the data transferred in the kernel space.Successful exploitation of this vulnerability may cause unauthorized access to the HISP module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-39012

Huawei Aslan Children's Watch has an improper input validation vulnerability. Successful exploitation may cause the watch's application service abnormal.

Products Affected

Vendor Product Version
huawei aslan-al10_firmware *
CVE-2022-41576

The rphone module has a script that can be maliciously modified.Successful exploitation of this vulnerability may cause irreversible programs to be implanted on user devices.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41577

The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitation of this vulnerability may cause out-of-bounds read in the kernel, which affects the device confidentiality and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H 1.8 5.2

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41578

The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41579

There is an insufficient authentication vulnerability in some Huawei band products. Successful exploit could allow the attacker to spoof then connect to the band.

Products Affected

Vendor Product Version
huawei hota-fara-b19_firmware 11.1.2.40
CVE-2022-41580

The HW_KEYMASTER module has a vulnerability of not verifying the data read.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41581

The HW_KEYMASTER module has a vulnerability of not verifying the data read.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41582

The security module has configuration defects.Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41583

The storage maintenance and debugging module has an array out-of-bounds read vulnerability.Successful exploitation of this vulnerability will cause incorrect statistics of this module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41584

The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41585

The kernel module has an out-of-bounds read vulnerability.Successful exploitation of this vulnerability may cause memory overwriting.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41586

The communication framework module has a vulnerability of not truncating data properly.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41587

Uncaptured exceptions in the home screen module. Successful exploitation of this vulnerability may affect stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 11.0.1
CVE-2022-41588

The home screen module has a vulnerability in service logic processing.Successful exploitation of this vulnerability may affect data integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41589

The DFX unwind stack module of the ArkCompiler has a vulnerability in interface calling.Successful exploitation of this vulnerability affects system services and device availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41590

Some smartphones have authentication-related (including session management) vulnerabilities as the setup wizard is bypassed. Successful exploitation of this vulnerability affects the smartphone availability.

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
CVE-2022-41591

The backup module has a path traversal vulnerability. Successful exploitation of this vulnerability causes unauthorized access to other system files.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-41592

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41593

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41594

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41595

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41596

The system tool has inconsistent serialization and deserialization. Successful exploitation of this vulnerability will cause unauthorized startup of components.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-41597

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41598

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41599

The system service has a vulnerability that causes incorrect return values. Successful exploitation of this vulnerability may affect data confidentiality.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-41600

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41601

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41602

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-41603

The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.4 LOW CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:L 0.8 2.5

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-44546

The kernel module has the vulnerability that the mapping is not cleared after the memory is automatically released. Successful exploitation of this vulnerability may cause a system restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei harmonyos 2.0
CVE-2022-44547

The Display Service module has a UAF vulnerability. Successful exploitation of this vulnerability may affect the display service availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei harmonyos 2.0
CVE-2022-44548

There is a vulnerability in permission verification during the Bluetooth pairing process. Successful exploitation of this vulnerability may cause the dialog box for confirming the pairing not to be displayed during Bluetooth pairing.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 2.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44549

The LBS module has a vulnerability in geofencing API access. Successful exploitation of this vulnerability may cause third-party apps to access the geofencing APIs without authorization, affecting user confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44550

The graphics display module has a UAF vulnerability when traversing graphic layers. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44551

The iaware module has a vulnerability in thread security. Successful exploitation of this vulnerability will affect confidentiality, integrity, and availability.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44552

The lock screen module has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei harmonyos 2.0
CVE-2022-44553

The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider. Successful exploitation of this vulnerability may cause third-party apps to start periodically.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44554

The power module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause abnormal status of a module on the device.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-44555

The DDMP/ODMF module has a service hijacking vulnerability. Successful exploit of this vulnerability may cause services to be unavailable.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44556

Missing parameter type validation in the DRM module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-44557

The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44558

The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44559

The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44560

The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44561

The preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauthorized apps add arbitrary widgets and shortcuts without interaction.

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44562

The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44563

There is a race condition vulnerability in SD upgrade mode. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-44564

Huawei Aslan Children's Watch has a path traversal vulnerability. Successful exploitation may allow attackers to access or modify protected system resources.

Products Affected

Vendor Product Version
huawei aslan-al10_firmware *
CVE-2022-45874

Huawei Aslan Children's Watch has an improper authorization vulnerability. Successful exploit could allow the attacker to access certain file.

Products Affected

Vendor Product Version
huawei aslan-al10_firmware *
CVE-2022-46310

The TelephonyProvider module has a vulnerability in obtaining values.Successful exploitation of this vulnerability may affect data confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2022-46311

The contacts component has a free (undefined) provider vulnerability. Successful exploitation of this vulnerability may affect data integrity.

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2022-46312

The application management module has a vulnerability in permission verification. Successful exploitation of this vulnerability causes unexpected clear of device applications.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-46313

The sensor privacy module has an authentication vulnerability. Successful exploitation of this vulnerability may cause unavailability of the smartphone's camera and microphone.

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2022-46314

The IPC module has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2022-46315

The ProfileSDK has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2022-46316

A thread security vulnerability exists in the authentication process. Successful exploitation of this vulnerability may affect data integrity, confidentiality, and availability.

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2022-46317

The power consumption module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may affect system availability.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-46318

The HAware module has a function logic error. Successful exploitation of this vulnerability will affect the account removal function in Settings.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-46319

Fingerprint calibration has a vulnerability of lacking boundary judgment. Successful exploitation of this vulnerability may cause out-of-bounds write.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46320

The kernel module has an out-of-bounds read vulnerability. Successful exploitation of this vulnerability may cause memory overwriting.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-46321

The Wi-Fi module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect data confidentiality.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-46322

Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system service exceptions.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46323

Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service exceptions.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46324

Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system service exceptions.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46325

Some smartphones have the out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause system service exceptions.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46326

Some smartphones have the out-of-bounds write vulnerability. Successful exploitation of this vulnerability may cause system service exceptions.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46327

Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause privilege escalation, which results in system service exceptions.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46328

Some smartphones have the input validation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-46740

There is a denial of service vulnerability in the Wi-Fi module of the HUAWEI WS7100-20 Smart WiFi Router.Successful exploit could cause a denial of service (DoS) condition.

Products Affected

Vendor Product Version
huawei ws7100-20_firmware 10.0.5.33
CVE-2022-46761

The system has a vulnerability that may cause dynamic hiding and restoring of app icons.Successful exploitation of this vulnerability may cause malicious hiding of app icons.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-46762

The memory management module has a logic bypass vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-47974

The Bluetooth AVRCP module has a vulnerability that can lead to DoS attacks.Successful exploitation of this vulnerability may cause the Bluetooth process to restart.

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos *
huawei emui 12.0.1
CVE-2022-47975

The DUBAI module has a double free vulnerability. Successful exploitation of this vulnerability may affect system availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-47976

The DMSDP module of the distributed hardware has a vulnerability that may cause imposter control connections.Successful exploitation of this vulnerability may disconnect normal service connections.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos *
CVE-2022-48230

There is a misinterpretation of input vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could lead to DoS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
CVE-2022-48254

There is a data processing error vulnerability in Leia-B29 2.0.0.49(M03). Successful exploitation could bypass lock screen authentication.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

Products Affected

Vendor Product Version
huawei leia-b29_firmware leia-b29_2.0.0.49(m03)
CVE-2022-48255

There is a system command injection vulnerability in BiSheng-WNM FW 3.0.0.325. A Huawei printer has a system command injection vulnerability. Successful exploitation could lead to remote code execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
CVE-2022-48259

There is a system command injection vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could allow attackers to gain higher privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
CVE-2022-48260

There is a buffer overflow vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation could lead to device service exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
CVE-2022-48261

There is a misinterpretation of input vulnerability in BiSheng-WNM FW 3.0.0.325. Successful exploitation of this vulnerability may cause the printer service to be abnormal.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
CVE-2022-48283

A piece of Huawei whole-home intelligence software has an Incorrect Privilege Assignment vulnerability. Successful exploitation of this vulnerability could allow attackers to access restricted functions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei hilink_ai_life 12.0.2.305
CVE-2022-48284

A piece of Huawei whole-home intelligence software has an Incorrect Privilege Assignment vulnerability. Successful exploitation of this vulnerability could allow attackers to access restricted functions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei hilink_ai_life 12.0.2.305
CVE-2022-48286

The multi-screen collaboration module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48287

The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48288

The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48289

The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48290

The phone-PC collaboration module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data confidentiality and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
CVE-2022-48291

The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2022-48292

The Bluetooth module has an out-of-memory (OOM) vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0
CVE-2022-48293

The Bluetooth module has an OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0
CVE-2022-48294

The IHwAttestationService interface has a defect in authentication. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48295

The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this vulnerability can lead to filling problems (batch installation of applications).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48296

The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48297

The geofencing kernel code has a vulnerability of not verifying the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48298

The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48299

The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48300

The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48301

The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0
CVE-2022-48302

The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0
CVE-2022-48305

There is an identity authentication bypass vulnerability in Huawei Children Smart Watch (Simba-AL00) 1.1.1.274. Successful exploitation of this vulnerability may cause the access control function of specific applications to fail.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei simba-al00_firmware 1.1.1.274
CVE-2022-48312

The HwPCAssistant module has the out-of-bounds read/write vulnerability. Successful exploitation of this vulnerability may affect confidentiality and integrity.

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-48313

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0
CVE-2022-48314

The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process. Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0
CVE-2022-48330

A Huawei sound box product has an out-of-bounds write vulnerability. Attackers can exploit this vulnerability to cause buffer overflow. Affected product versions include:FLMG-10 versions FLMG-10 10.0.1.0(H100SP22C00).

Products Affected

Vendor Product Version
huawei flmg-10_firmware 10.0.1.0
CVE-2022-48346

The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2022-48347

The MediaProvider module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
CVE-2022-48348

The MediaProvider module has a vulnerability of unauthorized data read. Successful exploitation of this vulnerability may affect confidentiality and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
CVE-2022-48349

The control component has a spoofing vulnerability. Successful exploitation of this vulnerability may affect confidentiality and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2022-48350

The HUAWEI Messaging app has a vulnerability of unauthorized file access. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
CVE-2022-48351

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2022-48352

Some smartphones have data initialization issues. Successful exploitation of this vulnerability may cause a system panic.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-48353

Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause kernel privilege escalation, which results in system service exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-48354

The Bluetooth module has a heap out-of-bounds write vulnerability. Successful exploitation of this vulnerability can cause the Bluetooth process to crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0
CVE-2022-48355

The Bluetooth module has a heap out-of-bounds read vulnerability. Successful exploitation of this vulnerability can cause the Bluetooth process to crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2022-48356

The facial recognition module has a vulnerability in input parameter verification. Successful exploitation of this vulnerability may cause failed facial recognition.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2022-48357

Some products have the double fetch vulnerability. Successful exploitation of this vulnerability may cause denial of service (DoS) attacks to the kernel.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2022-48358

The BatteryHealthActivity has a redirection vulnerability. Successful exploitation of this vulnerability by a malicious app can cause service exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H 2.8 4.0

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
CVE-2022-48359

The recovery mode for updates has a vulnerability that causes arbitrary disk modification. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2022-48360

The facial recognition module has a vulnerability in file permission control. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2022-48361

The Always On Display (AOD) has a path traversal vulnerability in theme files. Successful exploitation of this vulnerability may cause a failure in reading AOD theme resources.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
CVE-2022-48469

There is a traffic hijacking vulnerability in Huawei routers. Successful exploitation of this vulnerability can cause packets to be hijacked by attackers. 

Products Affected

Vendor Product Version
huawei b535-232a_firmware 2.0.0.1
CVE-2022-48470

Huawei HiLink AI Life product has an identity authentication bypass vulnerability. Successful exploitation of this vulnerability may allow attackers to access restricted functions.(Vulnerability ID:HWPSIRT-2022-42291) This vulnerability has been assigned a (CVE)ID:CVE-2022-48470

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L 1.4 2.5

Products Affected

Vendor Product Version
huawei hilink_ai_life 12.0.2.305
CVE-2022-48471

There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of this vulnerability may cause the printer service to be abnormal.

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
CVE-2022-48472

A Huawei printer has a system command injection vulnerability. Successful exploitation could lead to remote code execution. Affected product versions include:BiSheng-WNM versions OTA-BiSheng-FW-2.0.0.211-beta,BiSheng-WNM FW 3.0.0.325,BiSheng-WNM FW 2.0.0.211.

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
huawei ota-bisheng_firmware 2.0.0.211
huawei bisheng-wnm_firmware 2.0.0.211
CVE-2022-48473

There is a misinterpretation of input vulnerability in Huawei Printer. Successful exploitation of this vulnerability may cause the printer service to be abnormal.

Products Affected

Vendor Product Version
huawei bisheng-wnm_firmware 3.0.0.325
CVE-2022-48478

The facial recognition TA of some products lacks memory length verification. Successful exploitation of this vulnerability may cause exceptions of the facial recognition service.

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2022-48479

The facial recognition TA of some products has the out-of-bounds memory read vulnerability. Successful exploitation of this vulnerability may cause exceptions of the facial recognition service.

Products Affected

Vendor Product Version
huawei harmonyos 2.0
CVE-2022-48480

Integer overflow vulnerability in some phones. Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei emui 10.1.1
huawei emui 10.1.0
huawei emui 11.0.0
CVE-2022-48486

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48487

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48488

Vulnerability of bypassing the default desktop security controls.Successful exploitation of this vulnerability may cause unauthorized modifications to the desktop.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2022-48489

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48490

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48491

Vulnerability of missing authentication on certain HUAWEI phones.Successful exploitation of this vulnerability can lead to ads and other windows to display at any time.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2022-48492

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48493

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48494

Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2022-48495

Vulnerability of unauthorized access to foreground app information.Successful exploitation of this vulnerability may cause foreground app information to be obtained.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2022-48496

Vulnerability of lax app identity verification in the pre-authorization function.Successful exploitation of this vulnerability will cause malicious apps to become pre-authorized.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2022-48497

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48498

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48499

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48500

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48501

Configuration defects in the secure OS module.Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0.0
CVE-2022-48507

Vulnerability of identity verification being bypassed in the storage module. Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48508

Inappropriate authorization vulnerability in the system apps. Successful exploitation of this vulnerability may affect service integrity.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48509

Race condition vulnerability due to multi-thread access to mutually exclusive resources in Huawei Share. Successful exploitation of this vulnerability may cause the program to exit abnormally.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48510

Input verification vulnerability in the AMS module. Successful exploitation of this vulnerability will cause unauthorized operations.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
CVE-2022-48511

Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. Successful exploitation of this vulnerability may cause audio features to perform abnormally.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
CVE-2022-48512

Use After Free (UAF) vulnerability in the Vdecoderservice service. Successful exploitation of this vulnerability may cause the image decoding feature to perform abnormally.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
CVE-2022-48513

Vulnerability of identity verification being bypassed in the Gallery module. Successful exploitation of this vulnerability may cause out-of-bounds access.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2022-48514

The Sepolicy module has inappropriate permission control on the use of Netlink.Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.1.0
CVE-2022-48515

Vulnerability of inappropriate permission control in Nearby. Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
CVE-2022-48516

Vulnerability that a unique value can be obtained by a third-party app in the DSoftBus module. Successful exploitation of this vulnerability will affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48517

Unauthorized service access vulnerability in the DSoftBus module. Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
CVE-2022-48518

Vulnerability of signature verification in the iaware system being initialized later than the time when the system broadcasts are sent. Successful exploitation of this vulnerability may cause malicious apps to start upon power-on by spoofing the package names of apps in the startup trustlist, which affects system performance.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48519

Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48520

Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2022-48605

Input verification vulnerability in the fingerprint module. Successful exploitation of this vulnerability will affect confidentiality, integrity, and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui -
huawei harmonyos -
CVE-2022-48606

Stability-related vulnerability in the binder background management and control module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
CVE-2022-48613

Race condition vulnerability in the kernel module. Successful exploitation of this vulnerability may cause variable values to be read with the condition evaluation bypassed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
CVE-2022-48615

An improper access control vulnerability exists in a Huawei datacom product. Attackers can exploit this vulnerability to obtain partial device information.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N 2.8 4.2
psirt@huawei.com 4.8 MEDIUM CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:H/A:N 0.5 4.2

Products Affected

Vendor Product Version
huawei ar617vw_firmware v300r21c00spc200
CVE-2022-48616

A Huawei data communication product has a command injection vulnerability. Successful exploitation of this vulnerability may allow attackers to gain higher privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.4 MEDIUM CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H 0.5 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.6 5.9

Products Affected

Vendor Product Version
huawei ar617vw_firmware v300r21c00spc200
CVE-2022-48621

Vulnerability of missing authentication for critical functions in the Wi-Fi module.Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2022-48681

Some Huawei smart speakers have a memory overflow vulnerability. Successful exploitation of this vulnerability may cause certain functions to fail.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.2 HIGH CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H 0.6 6.0

Products Affected

Vendor Product Version
huawei egrt-00_firmware 2.1.0.20(h100sp30c00)
CVE-2023-0116

The reminder module lacks an authentication mechanism for broadcasts received. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei emui 12.0.1
CVE-2023-0117

The online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitation of this vulnerability may affect availability of features,such as MeeTime.

Products Affected

Vendor Product Version
huawei emui 13.0.0
CVE-2023-1691

Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-1692

The window management module lacks permission verification.Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-1693

The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei harmonyos *
CVE-2023-1694

The Settings module has the file privilege escalation vulnerability.Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei harmonyos *
CVE-2023-1695

Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-1696

The multimedia video module has a vulnerability in data processing.Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-26547

The InputMethod module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-26548

The pgmng module has a vulnerability in serialization/deserialization. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-26549

The SystemUI module has a vulnerability of repeated app restart due to improper parameters. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-31225

The Gallery app has the risk of hijacking attacks. Successful exploitation of this vulnerability may cause download failures and affect product availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2023-31226

The SDK for the MediaPlaybackController module has improper permission verification. Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
CVE-2023-31227

The hwPartsDFR module has a vulnerability in API calling verification. Successful exploitation of this vulnerability may affect device confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
CVE-2023-34154

Vulnerability of undefined permissions in HUAWEI VR screen projection.Successful exploitation of this vulnerability will cause third-party apps to create windows in an arbitrary way, consuming system resources.

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2023-34155

Vulnerability of unauthorized calling on HUAWEI phones and tablets.Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
CVE-2023-34156

Vulnerability of services denied by early fingerprint APIs on HarmonyOS products.Successful exploitation of this vulnerability may cause services to be denied.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2023-34157

Vulnerability of HwWatchHealth being hijacked.Successful exploitation of this vulnerability may cause repeated pop-up windows of the app.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 10.0 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 3.9 6.0

Products Affected

Vendor Product Version
huawei harmonyos *
CVE-2023-34158

Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 12.0.0
CVE-2023-34159

Improper permission control vulnerability in the Notepad app.Successful exploitation of the vulnerability may lead to privilege escalation, which affects availability and confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
CVE-2023-34160

Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 12.0.0
CVE-2023-34161

nappropriate authorization vulnerability in the SettingsProvider module.Successful exploitation of this vulnerability may cause features to perform abnormally.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2023-34162

Version update determination vulnerability in the user profile module.Successful exploitation of this vulnerability may cause repeated HMS Core updates and cause services to fail.

Products Affected

Vendor Product Version
huawei emui 13.0.0
CVE-2023-34163

Permission control vulnerability in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2023-34164

Vulnerability of incomplete input parameter verification in the communication framework module. Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-34165

Unauthorized access vulnerability in the Save for later feature provided by AI Touch.Successful exploitation of this vulnerability may cause third-party apps to forge a URI for unauthorized access with zero permissions.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
CVE-2023-34166

Vulnerability of system restart triggered by abnormal callbacks passed to APIs.Successful exploitation of this vulnerability may cause the system to restart.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2023-34167

Vulnerability of spoofing trustlists of Huawei desktop.Successful exploitation of this vulnerability can cause third-party apps to hide app icons on the desktop to prevent them from being uninstalled.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
CVE-2023-3455

Key management vulnerability on system. Successful exploitation of this vulnerability may affect service availability and integrity.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-3456

Vulnerability of kernel raw address leakage in the hang detector module. Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-37238

Vulnerability of apps' permission to access a certain API being incompletely verified in the wireless projection module. Successful exploitation of this vulnerability may affect some wireless projection features.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-37239

Format string vulnerability in the distributed file system. Attackers who bypass the selinux permission can exploit this vulnerability to crash the program.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-37240

Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability may cause out-of-bounds read.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-37241

Input verification vulnerability in the WMS API. Successful exploitation of this vulnerability may cause the device to restart.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-37242

Vulnerability of commands from the modem being intercepted in the atcmdserver module. Attackers may exploit this vulnerability to rewrite the non-volatile random-access memory (NVRAM), or facilitate the exploitation of other vulnerabilities.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2023-37245

Buffer overflow vulnerability in the modem pinctrl module. Successful exploitation of this vulnerability may affect the integrity and availability of the modem.

Products Affected

Vendor Product Version
huawei harmonyos 2.1
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.0
CVE-2023-39380

Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause audio devices to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-39381

Input verification vulnerability in the storage module. Successful exploitation of this vulnerability may cause the device to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39382

Input verification vulnerability in the audio module. Successful exploitation of this vulnerability may cause virtual machines (VMs) to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39383

Vulnerability of input parameters being not strictly verified in the AMS module. Successful exploitation of this vulnerability may compromise apps' data security.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39384

Vulnerability of incomplete permission verification in the input method module. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39385

Vulnerability of configuration defects in the media module of certain products.. Successful exploitation of this vulnerability may cause unauthorized access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2023-39386

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause newly installed apps to fail to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2023-39387

Vulnerability of permission control in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39388

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39389

Vulnerability of input parameters being not strictly verified in the PMS module. Successful exploitation of this vulnerability may cause home screen unavailability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39390

Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vulnerability may cause the device to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-39391

Vulnerability of system file information leakage in the USB Service module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39392

Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to be maliciously modified and overwritten.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39393

Vulnerability of insecure signatures in the ServiceWifiResources module. Successful exploitation of this vulnerability may cause ServiceWifiResources to be maliciously modified and overwritten.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39394

Vulnerability of API privilege escalation in the wifienhance module. Successful exploitation of this vulnerability may cause the arp list to be modified.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39395

Mismatch vulnerability in the serialization process in the communication system. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2023-39396

Deserialization vulnerability in the input module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-39397

Input parameter verification vulnerability in the communication system. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39398

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39399

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39400

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39401

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39402

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39403

Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39404

Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vulnerability may cause the device to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-39405

Vulnerability of out-of-bounds parameter read/write in the Wi-Fi module. Successful exploitation of this vulnerability may cause other apps to be executed with escalated privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
CVE-2023-39406

Permission control vulnerability in the XLayout component. Successful exploitation of this vulnerability may cause apps to forcibly restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
CVE-2023-39407

The Watchkit has a risk of unauthorized file access.Successful exploitation of this vulnerability may affect confidentiality and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
CVE-2023-39408

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-39409

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41293

Data security classification vulnerability in the DDMP module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-41294

The DP module has a service hijacking vulnerability.Successful exploitation of this vulnerability may affect some Super Device services.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.1.0
CVE-2023-41295

Vulnerability of improper permission management in the displayengine module. Successful exploitation of this vulnerability may cause the screen to turn dim.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
CVE-2023-41296

Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41297

Vulnerability of defects introduced in the design process in the HiviewTunner module. Successful exploitation of this vulnerability may cause service hijacking.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei emui 12.0.0
CVE-2023-41298

Vulnerability of permission control in the window module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41299

DoS vulnerability in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-41300

Vulnerability of parameters not being strictly verified in the PMS module. Successful exploitation of this vulnerability may cause the system to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41301

Vulnerability of unauthorized API access in the PMS module. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
CVE-2023-41302

Redirection permission verification vulnerability in the home screen module. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41303

Command injection vulnerability in the distributed file system module. Successful exploitation of this vulnerability may cause variables in the sock structure to be modified.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41304

Parameter verification vulnerability in the window module.Successful exploitation of this vulnerability may cause the size of an app window to be adjusted to that of a floating window.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-41305

Vulnerability of 5G messages being sent without being encrypted in a VPN environment in the SMS message module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41306

Vulnerability of mutex management in the bone voice ID trusted application (TA) module. Successful exploitation of this vulnerability may cause the bone voice ID feature to be unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

Products Affected

Vendor Product Version
huawei emui 12.0
huawei harmonyos 2.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2023-41307

Memory overwriting vulnerability in the security module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 2.1.0
CVE-2023-41308

Screenshot vulnerability in the input module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41309

Permission control vulnerability in the MediaPlaybackController module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41310

Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this vulnerability may cause malicious apps to run continuously in the background.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41311

Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause an app to be activated automatically.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-41312

Permission control vulnerability in the audio module. Successful exploitation of this vulnerability may cause several apps to be activated automatically.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44093

Vulnerability of package names' public keys not being verified in the security module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-44094

Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-44095

Use-After-Free (UAF) vulnerability in the surfaceflinger module.Successful exploitation of this vulnerability can cause system crash.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44096

Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44097

Vulnerability of the permission to access device SNs being improperly managed.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.1
huawei harmonyos 2.0.1
CVE-2023-44098

Vulnerability of missing encryption in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44099

Vulnerability of data verification errors in the kernel module. Successful exploitation of this vulnerability may cause WLAN interruption.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2023-44100

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44101

The Bluetooth module has a vulnerability in permission control for broadcast notifications.Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 2.0.0
huawei harmonyos 4.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-44102

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability can cause the Bluetooth function to be unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44103

Out-of-bounds read vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
CVE-2023-44104

Broadcast permission control vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44105

Vulnerability of permissions not being strictly verified in the window management module.Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44106

API permission management vulnerability in the Fwk-Display module.Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-44107

Vulnerability of defects introduced in the design process in the screen projection module.Successful exploitation of this vulnerability may affect service availability and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei harmonyos 2.1.0
CVE-2023-44108

Type confusion vulnerability in the distributed file module.Successful exploitation of this vulnerability may cause the device to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44109

Clone vulnerability in the huks ta module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
huawei harmonyos 2.0
CVE-2023-44110

Out-of-bounds access vulnerability in the audio module.Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.8 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44111

Vulnerability of brute-force attacks on the device authentication module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44112

Out-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-44113

Vulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-44114

Out-of-bounds array vulnerability in the dataipa module.Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-44115

Vulnerability of improper permission control in the Booster module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44116

Vulnerability of access permissions not being strictly verified in the APPWidget module.Successful exploitation of this vulnerability may cause some apps to run without being authorized.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-44117

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-44118

Vulnerability of undefined permissions in the MeeTime module.Successful exploitation of this vulnerability will affect availability and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
CVE-2023-44119

Vulnerability of mutual exclusion management in the kernel module.Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-4565

Broadcast permission control vulnerability in the framework module. Successful exploitation of this vulnerability may cause the hotspot feature to be unavailable.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
134c704f-9b21-4f2e-91b3-4a467353bcc0 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-4566

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46755

Vulnerability of input parameters being not strictly verified in the input. Successful exploitation of this vulnerability may cause the launcher to restart.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 2.0.1
CVE-2023-46756

Permission control vulnerability in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-46757

The remote PIN module has a vulnerability that causes incorrect information storage locations.Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-46758

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-46759

Permission control vulnerability in the call module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-46760

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46761

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46762

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46763

Vulnerability of background app permission management in the framework module. Successful exploitation of this vulnerability may cause background apps to start maliciously.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-46764

Unauthorized startup vulnerability of background apps. Successful exploitation of this vulnerability may cause background apps to start maliciously.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-46765

Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-46766

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46767

Out-of-bounds write vulnerability in the kernel driver module. Successful exploitation of this vulnerability may cause process exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46768

Multi-thread vulnerability in the idmap module. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46769

Use-After-Free (UAF) vulnerability in the dubai module. Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46770

Out-of-bounds vulnerability in the sensor module. Successful exploitation of this vulnerability may cause mistouch prevention errors on users' mobile phones.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
CVE-2023-46771

Security vulnerability in the face unlock module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
CVE-2023-46772

Vulnerability of parameters being out of the value range in the QMI service module. Successful exploitation of this vulnerability may cause errors in reading file data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 11.0.1
CVE-2023-46773

Permission management vulnerability in the PMS module. Successful exploitation of this vulnerability may cause privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-46774

Vulnerability of uncaught exceptions in the NFC module. Successful exploitation of this vulnerability can affect NFC availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei emui 12.0.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 2.0.1
CVE-2023-49239

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2023-49240

Unauthorized access vulnerability in the launcher module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2023-49241

API permission control vulnerability in the network management module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-49242

Free broadcast vulnerability in the running management module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-49243

Vulnerability of unauthorized access to email attachments in the email module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-49244

Permission management vulnerability in the multi-user module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-49245

Unauthorized access vulnerability in the Huawei Share module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-49246

Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2023-49247

Permission verification vulnerability in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-49248

Vulnerability of unauthorized file access in the Settings app. Successful exploitation of this vulnerability may cause unauthorized file access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52098

Denial of Service (DoS) vulnerability in the DMS module. Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52099

Vulnerability of foreground service restrictions being bypassed in the NMS module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52100

The Celia Keyboard module has a vulnerability in access control. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-52101

Component exposure vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service availability and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52102

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52103

Buffer overflow vulnerability in the FLP module. Successful exploitation of this vulnerability may cause out-of-bounds read.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52104

Vulnerability of parameters being not verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52105

The nearby module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-52106

Vulnerability of permission verification for APIs in the DownloadProviderMain module. Impact: Successful exploitation of this vulnerability will affect integrity and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H 3.9 5.2

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-52107

Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52108

Vulnerability of process priorities being raised in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52109

Vulnerability of trust relationships being inaccurate in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52110

The sensor module has an out-of-bounds access vulnerability.Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-52111

Authorization vulnerability in the BootLoader module. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52112

Unauthorized file access vulnerability in the wallpaper service module. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52113

launchAnyWhere vulnerability in the ActivityManagerService module. Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52114

Data confidentiality vulnerability in the ScreenReader module. Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2023-52115

The iaware module has a Use-After-Free (UAF) vulnerability. Successful exploitation of this vulnerability may affect the system functions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-52116

Permission management vulnerability in the multi-screen interaction module. Successful exploitation of this vulnerability may cause service exceptions of the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52357

Vulnerability of serialization/deserialization mismatch in the vibration framework.Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52359

Vulnerability of permission verification in some APIs in the ActivityTaskManagerService module. Impact: Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52361

The VerifiedBoot module has a vulnerability that may cause authentication errors.Successful exploitation of this vulnerability may affect integrity.

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-52363

Vulnerability of defects introduced in the design process in the Control Panel module.Successful exploitation of this vulnerability may cause app processes to be started by mistake.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52369

Stack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and integrity.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52373

Vulnerability of permission verification in the content sharing pop-up module.Successful exploitation of this vulnerability may cause unauthorized file sharing.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52375

Permission control vulnerability in the WindowManagerServices module.Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52378

Vulnerability of incorrect service logic in the WindowManagerServices module.Successful exploitation of this vulnerability may cause features to perform abnormally.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 3.1.0
CVE-2023-52383

Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H 0.5 4.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52384

Double-free vulnerability in the RSMC module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H 0.5 4.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52386

Out-of-bounds write vulnerability in the RSMC module. Impact: Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52387

Resource reuse vulnerability in the GPU module. Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52538

Vulnerability of package name verification being bypassed in the HwIms module. Impact: Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52540

Vulnerability of improper authentication in the Iaware module. Impact: Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52546

Vulnerability of package name verification being bypassed in the Calendar app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52547

Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26. Memory Corruption in SMI Handler of HddPassword SMM Module. This can be leveraged by a malicious OS attacker to corrupt data structures stored at the beginning of SMRAM and can potentially lead to code execution in SMM.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei curiem-wfg9b_firmware ota-curiem-bios-2.29
CVE-2023-52548

Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26) Arbitrary Memory Corruption in SMI Handler of ThisiServicesSmm SMM module. This can be leveraged by a malicious OS attacker to corrupt arbitrary SMRAM memory and, in turn, lead to code execution in SMM

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei curiem-wfg9b_firmware ota-curiem-b-bios-2.28
CVE-2023-52710

Huawei Matebook D16(Model: CREM-WXX9, BIOS: v2.26), As the communication buffer size hasn’t been properly validated to be of the expected size, it can partially overlap with the beginning SMRAM.This can be leveraged by a malicious OS attacker to corrupt data structures stored at the beginning of SMRAM and can potentially lead to code execution in SMM.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei curiem-wfg9b_firmware ota-curiem-bios-2.29
CVE-2023-52711

Various Issues Due To Exposed SMI Handler in AmdPspP2CmboxV2. The first issue can be leveraged to bypass the protections that have been put in place by previous UEFI phases to prevent direct access to the SPI flash. The second issue can be used to both leak and corrupt SMM memory thus potentially leading code execution in SMM

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei curiem-wfg9b_firmware curiem-wfg9b_bios_2.28
CVE-2023-52712

Various Issues Due To Exposed SMI Handler in AmdPspP2CmboxV2. The first issue can be leveraged to bypass the protections that have been put in place by previous UEFI phases to prevent direct access to the SPI flash. The second issue can be used to both leak and corrupt SMM memory, thus potentially leading code execution in SMM

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei curiem-wfg9b_firmware ota-curiem-b-bios-2.28
CVE-2023-52715

The SystemUI module has a vulnerability in permission management. Impact: Successful exploitation of this vulnerability may affect availability.

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2023-52718

A connection hijacking vulnerability exists in some Huawei home routers. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-34408) This vulnerability has been assigned a (CVE)ID:CVE-2023-52718

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.4 MEDIUM CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H 0.5 5.9
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 2.8 5.2

Products Affected

Vendor Product Version
huawei ws7290-15_firmware 3.0.3.266
huawei ws8502-10_firmware 3.0.3.242
huawei ws7206-10_firmware 11.0.5.19
huawei ws8001-10_firmware 3.0.3.242
huawei pt9030-15_firmware 3.0.3.266
huawei ws8002-10_firmware 3.0.3.242
huawei ws8500-10_firmware 3.0.3.235
huawei ws7206-10_firmware 2.1.0.203
huawei ws8700-10_firmware 3.0.3.251
huawei ws8000-10_firmware 3.0.3.236
CVE-2023-52719

Privilege escalation vulnerability in the PMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N 1.8 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2023-52720

Race condition vulnerability in the soundtrigger module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H 0.5 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52721

The WindowManager module has a vulnerability in permission control. Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2023-52953

Path traversal vulnerability in the Medialibrary module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2023-52954

Vulnerability of improper permission control in the Gallery module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L 1.8 2.5
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52955

Vulnerability of improper authentication in the ANS system service module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-52972

Huawei PCs have a vulnerability that allows low-privilege users to bypass SDDL permission checks . Successful exploitation this vulnerability could lead to termination of some system processes.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei yutufz-5651s1_senaryaudio 3.31.2.0
CVE-2023-5801

Vulnerability of identity verification being bypassed in the face unlock module. Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 12.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
CVE-2023-6273

Permission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 11.0.1
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2023-6514

The Bluetooth module of some Huawei Smart Screen products has an identity authentication bypass vulnerability. Successful exploitation of this vulnerability may allow attackers to access restricted functions.  Successful exploitation of this vulnerability may allow attackers to access restricted functions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
huawei ajmd-370s_firmware 103.1.0.110(sp12c00e2r1p2)
CVE-2023-7266

Some Huawei home routers have a connection hijacking vulnerability. Successful exploitation of this vulnerability may cause DoS or information leakage.(Vulnerability ID:HWPSIRT-2023-76605) This vulnerability has been assigned a (CVE)ID:CVE-2023-7266

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H 2.8 5.2
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei ws7200-10_firmware 3.0.3.215
huawei ws7206-10_firmware 4.0.0.16(v3r2)
huawei tc7001-10_firmware 2.0.0.336(sp6c300)
CVE-2023-7271

Privilege escalation vulnerability in the NMS module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-27895

Vulnerability of permission control in the window module. Successful exploitation of this vulnerability may affect confidentiality.

Products Affected

Vendor Product Version
huawei harmonyos 4.0.0
CVE-2024-30413

Vulnerability of improper permission control in the window management module. Impact: Successful exploitation of this vulnerability will affect availability.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-30417

Path traversal vulnerability in the Bluetooth-based sharing module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-32989

Insufficient verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-32990

Permission verification vulnerability in the system sharing pop-up module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H 1.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-32991

Permission verification vulnerability in the wpa_supplicant module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 1.6 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-32992

Insufficient verification vulnerability in the baseband module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2024-32993

Out-of-bounds access vulnerability in the memory module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:L 1.3 4.2

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-32995

Denial of service (DoS) vulnerability in the AMS module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-32996

Privilege escalation vulnerability in the account module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-32997

Race condition vulnerability in the binder driver module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2024-32998

NULL pointer access vulnerability in the clock module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2024-32999

Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:L 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2024-36499

Vulnerability of unauthorized screenshot capturing in the WMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-36500

Privilege escalation vulnerability in the AMS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-36501

Memory management vulnerability in the boottime module Impact: Successful exploitation of this vulnerability can affect integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H 0.8 4.7

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-36502

Out-of-bounds read vulnerability in the audio module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.9 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:H 1.5 5.8

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2024-36503

Memory management vulnerability in the Gralloc module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H 2.5 4.7

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
CVE-2024-39670

Privilege escalation vulnerability in the account synchronisation module. Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-39671

Access control vulnerability in the security verification module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 9.3 CRITICAL CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 2.5 6.0

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-39672

Memory request logic vulnerability in the memory module. Impact: Successful exploitation of this vulnerability will affect integrity and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-39673

Vulnerability of serialisation/deserialisation mismatch in the iAware module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-39674

Plaintext vulnerability in the Gallery search module. Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-4046

Cracking vulnerability in the OS security module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.4 MEDIUM CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 0.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-40575

An issue in Huawei Technologies opengauss (openGauss 5.0.0 build) v.7.3.0 allows a local attacker to cause a denial of service via the modification of table attributes

Products Affected

Vendor Product Version
huawei opengauss 7.3.0
CVE-2024-42032

Access permission verification vulnerability in the Contacts module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 1.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-42033

Access control vulnerability in the security verification module mpact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:L 1.1 5.3

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2024-42035

Permission control vulnerability in the App Multiplier module Impact:Successful exploitation of this vulnerability may affect functionality and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-42036

Access permission verification vulnerability in the Notepad module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 2.5 LOW CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N 1.0 1.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-42038

Vulnerability of PIN enhancement failures in the screen lock module Impact: Successful exploitation of this vulnerability may affect service confidentiality, integrity, and availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-42039

Access control vulnerability in the SystemUI module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N 2.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-45448

Page table protection configuration vulnerability in the trusted firmware module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N 0.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-47290

Input validation vulnerability in the USB service module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-47291

Permission vulnerability in the ActivityManagerService (AMS) module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L 0.8 4.7
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-47292

Path traversal vulnerability in the Bluetooth module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-47293

Out-of-bounds write vulnerability in the HAL-WIFI module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:L 0.5 4.2
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-47294

Access permission verification vulnerability in the input method framework module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 0.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-51510

Out-of-bounds access vulnerability in the logo module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.6 HIGH CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 0.9 6.0

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei harmonyos 5.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-51511

Vulnerability of parameter type not being verified in the WantAgent module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51512

Vulnerability of parameter type not being verified in the WantAgent module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51513

Vulnerability of processes not being fully terminated in the VPN module Impact: Successful exploitation of this vulnerability will affect power consumption.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51514

Vulnerability of pop-up windows belonging to no app in the VPN module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51515

Race condition vulnerability in the kernel network module Impact:Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51516

Permission control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to function abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51520

Vulnerability of input parameters not being verified in the HDC module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51521

Input parameter verification vulnerability in the background service module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L 2.5 2.7

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51522

Vulnerability of improper device information processing in the device management module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51523

Information management vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N 1.8 5.2

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51524

Permission control vulnerability in the Wi-Fi module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51525

Permission control vulnerability in the clipboard module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51526

Permission control vulnerability in the hidebug module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H 1.5 6.0

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-51527

Permission control vulnerability in the Gallery app Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 1.4 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-51528

Vulnerability of improper log printing in the Super Home Screen module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-51529

Data verification vulnerability in the battery module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-51530

LaunchAnywhere vulnerability in the account module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L 1.8 4.7

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-54096

Vulnerability of improper access control in the MTP module Impact: Successful exploitation of this vulnerability may affect integrity and accuracy.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:L 1.0 4.2
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-54097

Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementation and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N 0.9 5.8

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-54098

Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6
psirt@huawei.com 8.5 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:H/A:H 1.8 6.0

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-54099

File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:L/A:N 1.5 4.7
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N 1.8 5.2

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-54100

Vulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-54101

Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-54102

Race condition vulnerability in the DDR module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6
psirt@huawei.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:H/A:L 1.3 4.7

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei harmonyos 5.0.0
CVE-2024-54103

Vulnerability of improper access control in the album module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N 1.8 4.2
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54104

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54105

Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L 2.5 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54106

Null pointer dereference vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 7.1 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H 2.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54107

Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.1 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H 2.8 4.2
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54108

Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54109

Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54110

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54111

Read/Write vulnerability in the image decoding module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L 2.5 2.7

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54112

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54113

Process residence vulnerability in abnormal scenarios in the print module Impact: Successful exploitation of this vulnerability may affect power consumption.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H 2.0 4.0

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54114

Out-of-bounds access vulnerability in playback in the DASH module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L 1.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54115

Out-of-bounds read vulnerability in the DASH module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 2.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54116

Out-of-bounds read vulnerability in the M3U8 module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 2.8 1.4
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54117

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54119

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54120

Race condition vulnerability in the distributed notification module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6
psirt@huawei.com 4.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H 0.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54121

Startup control vulnerability in the ability module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-54122

Concurrent variable access vulnerability in the ability module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-5464

Vulnerability of insufficient permission verification in the NearLink module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-5465

Function vulnerabilities in the Calendar module Impact: Successful exploitation of this vulnerability will affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-56434

UAF vulnerability in the device node access module Impact: Successful exploitation of this vulnerability may cause service exceptions of the device.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H 0.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-56435

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56436

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56437

Vulnerability of input parameters not being verified in the widget framework module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.1 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56438

Vulnerability of improper memory address protection in the HUKS module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H 1.5 4.0
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-56439

Access control vulnerability in the identity authentication module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H 0.8 6.0

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56440

Permission control vulnerability in the Connectivity module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2024-56441

Race condition vulnerability in the Bastet module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6
psirt@huawei.com 4.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H 0.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-56442

Vulnerability of native APIs not being implemented in the NFC service module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-56443

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56444

Cross-process screen stack vulnerability in the UIExtension module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56445

Instruction authentication bypass vulnerability in the Findnetwork module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.8 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56446

Vulnerability of variables not being initialized in the notification module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56447

Vulnerability of improper permission control in the window management module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-56448

Vulnerability of improper access control in the home screen widget module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-56449

Privilege escalation vulnerability in the Account module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L 1.8 4.7
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2024-56450

Buffer overflow vulnerability in the component driver module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 6.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:H 0.8 5.5

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-56451

Integer overflow vulnerability during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H 1.8 5.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56452

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56453

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H 2.5 4.2
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56454

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56455

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-56456

Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H 2.5 4.2
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-57954

Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-57955

Arbitrary write vulnerability in the Gallery module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N 1.8 4.2
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58043

Permission bypass vulnerability in the window module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:L 2.5 4.7
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 4.3.0
CVE-2024-58044

Permission verification bypass vulnerability in the notification module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 4.3.0
CVE-2024-58045

Multi-concurrency vulnerability in the media digital copyright protection module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.6 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H 1.8 6.0
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58046

Permission management vulnerability in the lock screen module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58047

Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N 1.3 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58048

Multi-thread problem vulnerability in the package management module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58049

Permission verification vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N 1.3 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58050

Vulnerability of improper access permission in the HDC module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58106

Buffer overflow vulnerability in the codec module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L 2.1 2.5
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58107

Buffer overflow vulnerability in the codec module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58108

Buffer overflow vulnerability in the codec module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L 2.1 2.5
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58109

Buffer overflow vulnerability in the codec module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L 2.1 2.5
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58110

Buffer overflow vulnerability in the codec module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L 2.1 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58111

Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58112

Exception capture failure vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58113

Vulnerability of improper resource management in the memory management module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58114

Resource allocation control failure vulnerability in the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58115

Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58116

Buffer overflow vulnerability in the SVG parsing module of the ArkUI framework Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58117

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2024-58124

Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2024-58125

Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.0
CVE-2024-58126

Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.0
CVE-2024-58127

Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.0
CVE-2024-58252

Vulnerability of insufficient information protection in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2024-58255

EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability may lead to arbitrary command execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L 0.8 3.7

Products Affected

Vendor Product Version
huawei enzoh-w5611t_firmware 1.07
CVE-2024-58256

EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability may lead to arbitrary command execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.5 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L 1.0 3.4

Products Affected

Vendor Product Version
huawei enzoh-w5611t_firmware 1.07
CVE-2024-58257

EnzoH has an OS command injection vulnerability. Successful exploitation of this vulnerability may lead to arbitrary command execution.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:L/A:L 1.5 3.7

Products Affected

Vendor Product Version
huawei enzoh-w5611t_firmware 1.07
CVE-2024-9136

Access permission verification vulnerability in the App Multiplier module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2025-27521

Vulnerability of improper access permission in the process management module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N 2.5 4.2
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-31170

Access control vulnerability in the security verification module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 3.9 5.2

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.0
CVE-2025-31171

File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-31172

Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-31173

Memory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N 2.0 4.0

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-31174

Path traversal vulnerability in the DFS module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.9 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-31175

Deserialization mismatch vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
CVE-2025-46584

Vulnerability of improper authentication logic implementation in the file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46585

Out-of-bounds array read/write vulnerability in the kernel module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H 0.8 6.0
nvd@nist.gov 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.0 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46586

Permission control vulnerability in the contacts module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L 2.5 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46587

Permission control vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46588

Vulnerability of unauthorized access in the app lock module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.7 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 2.5 5.2
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 1.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46589

Vulnerability of unauthorized access in the app lock module Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 1.8 2.5
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N 1.8 5.2

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46590

Bypass vulnerability in the network search instruction authentication module Impact: Successful exploitation of this vulnerability can bypass authentication and enable access to some network search functions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.8 3.4
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 3.9 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46591

Out-of-bounds data read vulnerability in the authorization module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46592

Null pointer dereference vulnerability in the USB HDI driver module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L 1.8 2.5
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-46593

Process residence vulnerability in abnormal scenarios in the print module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L 2.5 2.5
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-48902

Vulnerability of uncontrolled system resource applications in the setting module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:H 0.8 5.3

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 4.3.0
CVE-2025-48903

Permission bypass vulnerability in the media library module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-48904

Vulnerability that cards can call unauthorized APIs in the FRS process Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 1.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-48905

Wasm exception capture vulnerability in the arkweb v8 module Impact: Successful exploitation of this vulnerability may cause the failure to capture specific Wasm exception types.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-48906

Authentication bypass vulnerability in the DSoftBus module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-48907

Deserialization vulnerability in the IPC module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-48908

Ability Auto Startup service vulnerability in the foundation process Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
CVE-2025-48909

Bypass vulnerability in the device management channel Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.1 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:L 2.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
CVE-2025-48910

Buffer overflow vulnerability in the DFile module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.1 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.0
huawei harmonyos 4.3.0
CVE-2025-48911

Vulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:H 1.8 5.8

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-53167

Authentication vulnerability in the distributed collaboration framework module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6
psirt@huawei.com 6.9 MEDIUM CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:L 1.6 4.7

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53168

Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53169

Vulnerability of bypassing the process to start SA and use related functions on distributed cameras Impact: Successful exploitation of this vulnerability may allow the peer device to use the camera without user awareness.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.6 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 2.8 4.7

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53170

Null pointer dereference vulnerability in the application exit cause module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 2.5 1.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-53171

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53172

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53173

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 2.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53174

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53175

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53176

Stack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the file preview function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53177

Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule syncing function of watches.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.9 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L 1.3 2.5

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.0
CVE-2025-53178

Permission bypass vulnerability in the calendar storage module Impact: Successful exploitation of this vulnerability may affect the schedule reminder function of head units.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 1.3 3.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.0
CVE-2025-53179

Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53180

Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53181

Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53182

Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53183

Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53184

Null pointer dereference vulnerability in the PDF preview module Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-53185

Virtual address reuse issue in the memory management module, which can be exploited by non-privileged users to access released memory Impact: Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L 1.8 4.7

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
CVE-2025-53186

Vulnerability that allows third-party call apps to send broadcasts without verification in the audio framework module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 4.3.0
CVE-2025-54606

Status verification vulnerability in the lock screen module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H 1.8 5.2
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 2.5 4.7

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54607

Authentication management vulnerability in the ArkWeb module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.7 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:L 2.2 5.5
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54608

Vulnerability that allows setting screen rotation direction without permission verification in the screen management module. Impact: Successful exploitation of this vulnerability may cause device screen orientation to be arbitrarily set.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 2.5 1.4
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54609

Out-of-bounds access vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54610

Out-of-bounds access vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.8 2.5
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54611

EXTRA_REFERRER resource read vulnerability in the Gallery module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 2.5 4.7
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2025-54612

Iterator failure vulnerability in the card management module. Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54613

Iterator failure vulnerability in the card management module. Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54614

Input verification vulnerability in the home screen module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54615

Vulnerability of insufficient information protection in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54616

Out-of-bounds array access vulnerability in the ArkUI framework. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54617

Stack-based buffer overflow vulnerability in the dms_fwk module. Impact: Successful exploitation of this vulnerability can cause RCE.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L 2.1 4.7

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54618

Permission control vulnerability in the distributed clipboard module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54619

Iterator failure issue in the multi-mode input module. Impact: Successful exploitation of this vulnerability may cause iterator failures and affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 1.8 3.4
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54620

Deserialization vulnerability of untrusted data in the ability module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54621

Iterator failure issue in the WantAgent module. Impact: Successful exploitation of this vulnerability may cause memory release failures.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54622

Binding authentication bypass vulnerability in the devicemanager module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.3 HIGH CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H 1.6 6.0
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N 2.8 4.0

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54623

Out-of-bounds read vulnerability in the devicemanager module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6
psirt@huawei.com 6.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54624

Unexpected injection event vulnerability in the multimodalinput module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.1 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54625

Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54626

Pointer dangling vulnerability in the cjwindow module. Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L 1.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54627

Out-of-bounds write vulnerability in the skia module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54628

Vulnerability of incomplete verification information in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 5.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
huawei harmonyos 5.0.1
CVE-2025-54629

Race condition issue occurring in the physical page import process of the memory management module. Impact: Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 5.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
huawei harmonyos 5.0.1
CVE-2025-54630

:Vulnerability of insufficient data length verification in the DFA module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.3.0
huawei harmonyos 5.0.1
CVE-2025-54631

Vulnerability of insufficient data length verification in the partition module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54632

Vulnerability of insufficient data length verification in the HVB module. Impact: Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 0.9 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.3.1
huawei harmonyos 5.1.0
huawei emui 15.0.0
huawei harmonyos 5.0.1
CVE-2025-54633

Out-of-bounds read vulnerability in the register configuration of the DMA module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54634

Vulnerability of improper processing of abnormal conditions in huge page separation. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.0 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H 2.5 5.5
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54635

Vulnerability of returning released pointers in the distributed notification service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L 1.7 3.7

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54636

Issue of buffer overflow caused by insufficient data verification in the kernel drop detection module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 0.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2025-54637

Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2025-54638

Issue of inconsistent read/write serialization in the ad module. Impact: Successful exploitation of this vulnerability may affect the availability of the ad service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54639

ParcelMismatch vulnerability in attribute deserialization. Impact: Successful exploitation of this vulnerability may cause playback control screen display exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54640

ParcelMismatch vulnerability in attribute deserialization. Impact: Successful exploitation of this vulnerability may cause playback control screen display exceptions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54641

Issue of buffer overflow caused by insufficient data verification in the kernel acceleration module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2025-54642

Issue of buffer overflow caused by insufficient data verification in the kernel gyroscope module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2025-54643

Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L 1.8 4.7
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2025-54644

Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H 1.8 4.7

Products Affected

Vendor Product Version
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2025-54645

Out-of-bounds array access issue due to insufficient data verification in the location service module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 1.8 2.7

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54646

Vulnerability of inadequate packet length check in the BLE module. Impact: Successful exploitation of this vulnerability may affect performance.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.8 1.4
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L 2.5 2.5

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 2.1.0
huawei harmonyos 3.1.0
huawei harmonyos 5.1.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei harmonyos 4.3.0
huawei harmonyos 5.0.1
CVE-2025-54647

Out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6
psirt@huawei.com 5.4 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L 2.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54648

Out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.8 3.6
psirt@huawei.com 5.4 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L 2.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-54649

Vulnerability of using incompatible types to access resources in the location service. Impact: Successful exploitation of this vulnerability may cause some location information attributes to be incorrect.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 1.8 1.4
psirt@huawei.com 4.5 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L 1.0 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54650

Improper array index verification vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect the audio decoding function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4
psirt@huawei.com 4.2 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N 1.6 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54651

Race condition vulnerability in the kernel hufs module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N 1.0 3.6
psirt@huawei.com 4.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 1.3 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54652

Path traversal vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H 2.0 5.8
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54653

Path traversal vulnerability in the virtualization file module. Successful exploitation of this vulnerability may affect the confidentiality of the virtualization file module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:H 2.0 5.8
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N 2.0 4.0

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-54654

Permission control vulnerability in the Gallery module. Successful exploitation of this vulnerability may affect service confidentiality

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-54655

Race condition vulnerability in the virtualization base module. Successful exploitation of this vulnerability may affect the confidentiality and integrity of the virtualization graphics module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N 1.4 5.8
psirt@huawei.com 8.1 HIGH CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H 1.4 6.0

Products Affected

Vendor Product Version
huawei harmonyos 5.0.2
huawei harmonyos 5.0.1
CVE-2025-58276

Permission verification vulnerability in the home screen module Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 4.3.1
huawei harmonyos 3.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2025-58277

Permission verification bypass vulnerability in the Camera app. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N 0.4 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58278

Identity authentication bypass vulnerability in the Gallery app. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.1
CVE-2025-58279

Permission control vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N 0.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58280

Vulnerability of exposing object heap addresses in the Ark eTS module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58281

Out-of-bounds read vulnerability in the runtime interpreter module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58282

Permission control vulnerability in the camera module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 2.8 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N 1.3 1.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58283

Permission control vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58284

Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N 1.5 4.0

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58285

Permission control vulnerability in the media module. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58286

Denial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58287

Use After Free (UAF) vulnerability in the office service. Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58288

Denial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58289

Vulnerability of improper exception handling in the print module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58290

Denial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58291

Denial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58292

Denial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58293

Vulnerability of improper exception handling in the print module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58294

Permission control vulnerability in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58295

Buffer overflow vulnerability in the development framework module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58296

Race condition vulnerability in the audio module. Impact: Successful exploitation of this vulnerability may affect function stability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6
psirt@huawei.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H 0.8 6.0

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58297

Buffer overflow vulnerability in the sensor service. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-58298

Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H 2.5 4.7
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58299

Use After Free (UAF) vulnerability in the storage management module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58300

Buffer overflow vulnerability in the device management module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58301

Buffer overflow vulnerability in the device management module. Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58302

Permission control vulnerability in the Settings module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 3.1.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2025-58303

UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58304

Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.9 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N 0.7 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58305

Identity authentication bypass vulnerability in the Gallery app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.1
CVE-2025-58307

UAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.4 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H 0.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58308

Vulnerability of improper criterion security check in the call module. Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H 2.5 4.7

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58309

Permission control vulnerability in the startup recovery module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58310

Permission control vulnerability in the distributed component. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.0 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H 2.5 5.5

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58311

UAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.8 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:H 0.6 4.7

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 5.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
huawei harmonyos 5.0.1
CVE-2025-58312

Permission control vulnerability in the App Lock module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 1.4 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58313

Race condition vulnerability in the device standby module. Impact: Successful exploitation of this vulnerability may cause feature exceptions of the device standby module.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 2.5 LOW CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L 1.0 1.4
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 1.4 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58314

Vulnerability of accessing invalid memory in the component driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L 1.8 4.7

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei harmonyos 6.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 3.1.0
huawei harmonyos 5.1.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
huawei harmonyos 5.0.1
CVE-2025-58315

Permission control vulnerability in the Wi-Fi module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-58316

DoS vulnerability in the video-related system service module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H 2.5 4.7

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-64311

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 1.4 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-64312

Permission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.9 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:N 0.7 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-64313

Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-64314

Permission control vulnerability in the memory management module. Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 9.3 CRITICAL CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 2.5 6.0

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-64315

Configuration defect vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect app data confidentiality and integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 1.8 2.5

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
CVE-2025-66319

Permission control vulnerability in the resource scheduling module. Impact: Successful exploitation of this vulnerability may affect service integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2025-66320

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H 0.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66321

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H 0.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66322

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H 0.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.0.1
CVE-2025-66323

Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L 1.8 3.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66324

Input verification vulnerability in the compression and decompression module. Impact: Successful exploitation of this vulnerability may affect app data integrity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66325

Permission control vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 3.1.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2025-66326

Race condition vulnerability in the audio module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2025-66327

Race condition vulnerability in the network module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H 2.5 4.0
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N 1.0 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66328

Multi-thread race condition vulnerability in the network management module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H 1.0 3.6

Products Affected

Vendor Product Version
huawei harmonyos 5.0.1
CVE-2025-66329

Permission control vulnerability in the window management module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 3.1.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei emui 12.0.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2025-66330

App lock verification bypass vulnerability in the file management app. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.9 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N 0.7 4.2
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66331

Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66332

Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66333

Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-66334

Denial of service (DoS) vulnerability in the office service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L 1.8 1.4
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68955

Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.0 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H 2.5 5.5

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2025-68956

Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.0 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H 2.5 5.5

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2025-68957

Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2025-68958

Multi-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.0 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:H 2.5 5.5

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2025-68959

Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 3.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2025-68960

Multi-thread race condition vulnerability in the video framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68961

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H 0.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68962

Multi-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H 0.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68963

Man-in-the-middle attack vulnerability in the Clone module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 2.1 3.6

Products Affected

Vendor Product Version
huawei harmonyos 4.3.1
huawei emui 15.0.0
CVE-2025-68964

Data verification vulnerability in the HiView module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.1
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68965

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N 1.0 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68966

Permission control vulnerability in the Notepad module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 1.4 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68967

Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:L 2.5 2.7

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2025-68968

Double free vulnerability in the multi-mode input module. Impact: Successful exploitation of this vulnerability may affect the input function.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2025-68969

Multi-thread race condition vulnerability in the thermal management module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
huawei harmonyos 5.0.1
CVE-2025-68970

Permission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L 1.3 4.7

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 3.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 3.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2026-24914

Type confusion vulnerability in the camera module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24915

Out-of-bounds read issue in the media subsystem. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.1
huawei harmonyos 5.1.0
CVE-2026-24916

Identity authentication bypass vulnerability in the window module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N 0.7 5.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24917

UAF vulnerability in the security module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H 1.0 5.5

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2026-24918

Address read vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.1
huawei harmonyos 4.3.1
huawei harmonyos 5.1.0
huawei emui 15.0.0
CVE-2026-24919

Out-of-bounds write vulnerability in the DFX module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H 0.8 5.2

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 4.3.1
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2026-24920

Permission control vulnerability in the AMS module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei harmonyos 4.3.1
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2026-24921

Address read vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability will affect availability and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:L/I:N/A:H 0.6 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24922

Buffer overflow vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:H 1.1 5.3

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24923

Permission control vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.3 MEDIUM CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H 0.4 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24924

Vulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L 1.8 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24925

Heap-based buffer overflow vulnerability in the image module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H 2.5 4.7

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-24926

Out-of-bounds write vulnerability in the camera module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24927

Out-of-bounds access vulnerability in the frequency modulation module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei emui 15.0.0
huawei harmonyos 4.3.0
CVE-2026-24928

Out-of-bounds write vulnerability in the file system module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.8 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:L 1.0 4.7

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
CVE-2026-24929

Out-of-bounds read vulnerability in the graphics module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-24930

UAF concurrency vulnerability in the graphics module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.5 5.9

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-24931

Vulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28536

Authentication bypass vulnerability in the device authentication module. Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 9.6 CRITICAL CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 2.8 6.0

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28537

Double free vulnerability in the window module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 1.4 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-28538

Path traversal vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28539

Data processing vulnerability in the certificate management module. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 2.5 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28540

Out-of-bounds character read vulnerability in Bluetooth. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28541

Permission control vulnerability in the cellular_data module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28542

Permission bypass vulnerability in the system service framework. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 2.5 4.7

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 3.1.0
CVE-2026-28543

Race condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 0.8 3.6

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28544

Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.2 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L 1.4 4.7

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-28545

Race condition vulnerability in the printing module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-28546

Buffer overflow vulnerability in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.5 3.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-28547

Vulnerability of uninitialized pointer access in the scanning module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H 2.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-28548

Vulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N 1.8 5.2

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei emui 13.0.0
huawei harmonyos 2.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei emui 12.0.0
huawei harmonyos 3.1.0
CVE-2026-28549

Race condition vulnerability in the permission management service. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H 1.8 4.7

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-28550

Race condition vulnerability in the security control module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 2.5 1.4

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
CVE-2026-28551

Race condition vulnerability in the device security management module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H 0.5 4.2

Products Affected

Vendor Product Version
huawei harmonyos 6.0.0
huawei harmonyos 5.1.0
CVE-2026-28552

Out-of-bounds write vulnerability in the IMS module. Impact: Successful exploitation of this vulnerability may affect availability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@huawei.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H 2.2 4.2

Products Affected

Vendor Product Version
huawei emui 14.2.0
huawei harmonyos 4.2.0
huawei harmonyos 6.0.0
huawei emui 14.0.0
huawei harmonyos 4.0.0
huawei harmonyos 4.3.1
huawei harmonyos 5.1.0
huawei emui 15.0.0
huawei harmonyos 4.3.0