Vulnerabilities > Huawei
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-22 | CVE-2017-2725 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei P10 Firmware and P10 Plus Firmware Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. | 7.8 |
| 2017-11-22 | CVE-2017-2724 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei P10 Firmware and P10 Plus Firmware Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. | 8.4 |
| 2017-11-22 | CVE-2017-2723 | Cleartext Storage of Sensitive Information vulnerability in Huawei Files 7.1.1.308 The Files APP 7.1.1.308 and earlier versions in some Huawei mobile phones has a vulnerability of plaintext storage of users' Safe passwords. | 6.7 |
| 2017-11-22 | CVE-2017-2722 | Improper Input Validation vulnerability in Huawei products DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, V100R003C00, V500R002C00 and V600R006C00,TP3106 with software V100R001C06 and V100R002C00,ViewPoint 9030 with software V100R011C02, V100R011C03,eCNS210_TD with software V100R004C10,eSpace 7950 with software V200R003C00 and V200R003C30,eSpace IAD with software V300R001C07SPCa00 and V300R002C01SPCb00,eSpace U1981 with software V100R001C20, V100R001C30, V200R003C00, V200R003C20 and V200R003C30 have an input validation vulnerability.A remote attacker may exploit this vulnerability by crafting a malformed packet and sending it to the device. | 8.8 |
| 2017-11-22 | CVE-2017-2721 | Improper Authentication vulnerability in Huawei products Some Huawei smart phones with software Berlin-L21C10B130,Berlin-L21C185B133,Berlin-L21HNC10B131,Berlin-L21HNC185B140,Berlin-L21HNC432B151,Berlin-L22C636B160,Berlin-L22HNC636B130,Berlin-L22HNC675B150CUSTC675D001,Berlin-L23C605B131,Berlin-L24HNC567B110,FRD-L02C432B120,FRD-L02C635B130,FRD-L02C675B170CUSTC675D001,FRD-L04C567B162,FRD-L04C605B131,FRD-L09C10B130,FRD-L09C185B130,FRD-L09C432B131,FRD-L09C636B130,FRD-L14C567B162,FRD-L19C10B130,FRD-L19C432B131,FRD-L19C636B130 have a factory Reset Protection (FRP) bypass security vulnerability. | 4.6 |
| 2017-11-22 | CVE-2017-2720 | Use of Hard-coded Credentials vulnerability in Huawei Fusionsphere Openstack V100R006C00 FusionSphere OpenStack V100R006C00 has an information exposure vulnerability. | 5.3 |
| 2017-11-22 | CVE-2017-2719 | Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10Rc2 FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. | 8.8 |
| 2017-11-22 | CVE-2017-2718 | Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10 FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. | 8.8 |
| 2017-11-22 | CVE-2017-2717 | Integer Overflow or Wraparound vulnerability in Huawei Honor 8 PRO Firmware Dukel09C10B120/Dukel09C432B120/Dukel09C636B120 honor 8 Pro with software Duke-L09C10B120 and earlier versions,Duke-L09C432B120 and earlier versions,Duke-L09C636B120 and earlier versions has an integer overflow vulnerability. | 6.5 |
| 2017-11-22 | CVE-2017-2716 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Mate 9 Firmware The camerafs driver in Mate 9 Versions earlier than MHA-AL00BC00B173 has buffer overflow vulnerability. | 7.8 |