Vulnerabilities > Huawei > Prague Al00C Firmware

DATE CVE VULNERABILITY TITLE RISK
2018-05-24 CVE-2017-17158 Improper Input Validation vulnerability in Huawei products
Some Huawei smart phones with the versions before Berlin-L21HNC185B381; the versions before Prague-AL00AC00B223; the versions before Prague-AL00BC00B223; the versions before Prague-AL00CC00B223; the versions before Prague-L31C432B208; the versions before Prague-TL00AC01B223; the versions before Prague-TL00AC01B223 have an information exposure vulnerability.
low complexity
huawei CWE-20
4.6
2018-03-23 CVE-2017-15325 Integer Overflow or Wraparound vulnerability in Huawei products
The Bdat driver of Prague smart phones with software versions earlier than Prague-AL00AC00B211, versions earlier than Prague-AL00BC00B211, versions earlier than Prague-AL00CC00B211, versions earlier than Prague-TL00AC01B211, versions earlier than Prague-TL10AC01B211 has integer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-190
7.8
2017-11-22 CVE-2017-8202 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei products
The CameraISP driver of some Huawei smart phones with software of versions earlier than Prague-AL00AC00B205,versions earlier than Prague-AL00BC00B205,versions earlier than Prague-AL00CC00B205,versions earlier than Prague-TL00AC01B205,versions earlier than Prague-TL10AC01B205 has a buffer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-119
5.5