Vulnerabilities > Huawei > High

DATE CVE VULNERABILITY TITLE RISK
2017-11-22 CVE-2017-8210 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Honor 5C Firmware and Honor 6X Firmware
The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-119
7.8
2017-11-22 CVE-2017-8209 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Honor 5C Firmware and Honor 6X Firmware
The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-119
7.8
2017-11-22 CVE-2017-8208 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Honor 5C Firmware and Honor 6X Firmware
The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-119
7.8
2017-11-22 CVE-2017-8207 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Honor 5C Firmware and Honor 6X Firmware
The driver of honor 5C, honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-119
7.8
2017-11-22 CVE-2017-8205 Integer Overflow or Wraparound vulnerability in Huawei Honor 9 Firmware Stanfordal00C00B175
The Bastet driver of Honor 9 Huawei smart phones with software of versions earlier than Stanford-AL10C00B175 has integer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-190
7.8
2017-11-22 CVE-2017-8204 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Honor 9 Firmware Stanfordal00C00B175
The Bastet driver of Honor 9 Huawei smart phones with software of versions earlier than Stanford-AL10C00B175 has a buffer overflow vulnerability due to the lack of parameter validation.
local
low complexity
huawei CWE-119
7.8
2017-11-22 CVE-2017-8203 Use After Free vulnerability in Huawei Nova 2 Firmware and Nova 2 Plus Firmware
The Bastet Driver of Nova 2 Plus,Nova 2 Huawei smart phones with software of Versions earlier than BAC-AL00C00B173,Versions earlier than PIC-AL00C00B173 has a use after free (UAF) vulnerability.
local
low complexity
huawei CWE-416
7.8
2017-11-22 CVE-2017-8198 SQL Injection vulnerability in Huawei Fusionsphere V100R006C00Spc102(Nfv)
FusionSphere V100R006C00SPC102(NFV) has an SQL injection vulnerability.
network
low complexity
huawei CWE-89
7.2
2017-11-22 CVE-2017-8197 Command Injection vulnerability in Huawei Fusionsphere V100R006C00Spc102(Nfv)
FusionSphere V100R006C00SPC102(NFV) has a command injection vulnerability.
network
low complexity
huawei CWE-77
7.2
2017-11-22 CVE-2017-8195 Improper Authentication vulnerability in Huawei Fusionsphere Openstack V100R006C00Spc102(Nfv)
The FusionSphere OpenStack V100R006C00SPC102(NFV) has an improper authentication vulnerability.
network
low complexity
huawei CWE-287
8.8