Vulnerabilities > Huawei

DATE CVE VULNERABILITY TITLE RISK
2021-10-11 CVE-2021-37123 Improper Authentication vulnerability in Huawei Hero-Ct060 Firmware
There is an improper authentication vulnerability in Hero-CT060 before 1.0.0.200.
network
low complexity
huawei CWE-287
7.5
2021-09-28 CVE-2021-37104 Server-Side Request Forgery (SSRF) vulnerability in Huawei P40 Firmware 10.1.0.118(C00E116R3P3)
There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3).
network
low complexity
huawei CWE-918
5.0
2021-09-28 CVE-2021-37105 Unrestricted Upload of File with Dangerous Type vulnerability in Huawei Fusioncompute 6.5.0/6.5.1/8.0.0
There is an improper file upload control vulnerability in FusionCompute 6.5.0, 6.5.1 and 8.0.0.
network
huawei CWE-434
4.3
2021-09-28 CVE-2021-37106 OS Command Injection vulnerability in Huawei Fusioncompute
There is a command injection vulnerability in CMA service module of FusionCompute 6.3.0, 6.3.1, 6.5.0 and 8.0.0 when processing the default certificate file.
network
low complexity
huawei CWE-78
critical
9.0
2021-09-09 CVE-2021-37101 Incorrect Authorization vulnerability in Huawei Ais-Bw50-00 Firmware 9.0.6.2(H100Sp10C00)/9.0.6.2(H100Sp15C00)
There is an improper authorization vulnerability in AIS-BW50-00 9.0.6.2(H100SP10C00) and 9.0.6.2(H100SP15C00).
local
low complexity
huawei CWE-863
7.2
2021-08-23 CVE-2021-22328 Improper Handling of Exceptional Conditions vulnerability in Huawei products
There is a denial of service vulnerability in some huawei products.
network
low complexity
huawei CWE-755
5.0
2021-08-23 CVE-2021-22357 Improper Input Validation vulnerability in Huawei products
There is a denial of service vulnerability in Huawei products.
network
low complexity
huawei CWE-20
5.0
2021-08-23 CVE-2021-22449 Improper Privilege Management vulnerability in Huawei Elf-G10Hn 1.0.0.608
There is a logic vulnerability in Elf-G10HN 1.0.0.608.
network
low complexity
huawei CWE-269
5.0
2021-08-13 CVE-2021-37028 OS Command Injection vulnerability in Huawei Hg8045Q Firmware V300R016C00Spc110/V300R018C10
There is a command injection vulnerability in the HG8045Q product.
local
huawei CWE-78
6.9
2021-08-10 CVE-2021-22385 Incorrect Authorization vulnerability in Huawei Emui and Magic UI
A component of the Huawei smartphone has a External Control of System or Configuration Setting vulnerability.
local
low complexity
huawei CWE-863
7.2