Vulnerabilities > Huawei > Prague Al00B Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-05-24 CVE-2017-17158 Improper Input Validation vulnerability in Huawei products
Some Huawei smart phones with the versions before Berlin-L21HNC185B381; the versions before Prague-AL00AC00B223; the versions before Prague-AL00BC00B223; the versions before Prague-AL00CC00B223; the versions before Prague-L31C432B208; the versions before Prague-TL00AC01B223; the versions before Prague-TL00AC01B223 have an information exposure vulnerability.
low complexity
huawei CWE-20
4.6
2017-11-22 CVE-2017-8202 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei products
The CameraISP driver of some Huawei smart phones with software of versions earlier than Prague-AL00AC00B205,versions earlier than Prague-AL00BC00B205,versions earlier than Prague-AL00CC00B205,versions earlier than Prague-TL00AC01B205,versions earlier than Prague-TL10AC01B205 has a buffer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-119
5.5