Vulnerabilities > Huawei > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-22 | CVE-2017-2725 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei P10 Firmware and P10 Plus Firmware Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. | 7.8 |
| 2017-11-22 | CVE-2017-2724 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei P10 Firmware and P10 Plus Firmware Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. | 8.4 |
| 2017-11-22 | CVE-2017-2722 | Improper Input Validation vulnerability in Huawei products DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, V100R003C00, V500R002C00 and V600R006C00,TP3106 with software V100R001C06 and V100R002C00,ViewPoint 9030 with software V100R011C02, V100R011C03,eCNS210_TD with software V100R004C10,eSpace 7950 with software V200R003C00 and V200R003C30,eSpace IAD with software V300R001C07SPCa00 and V300R002C01SPCb00,eSpace U1981 with software V100R001C20, V100R001C30, V200R003C00, V200R003C20 and V200R003C30 have an input validation vulnerability.A remote attacker may exploit this vulnerability by crafting a malformed packet and sending it to the device. | 8.8 |
| 2017-11-22 | CVE-2017-2719 | Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10Rc2 FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. | 8.8 |
| 2017-11-22 | CVE-2017-2718 | Command Injection vulnerability in Huawei Fusionsphere Openstack V100R006C00/V100R006C10 FusionSphere OpenStack with software V100R006C00 and V100R006C10RC2 has two command injection vulnerabilities due to the insufficient input validation on one port. | 8.8 |
| 2017-11-22 | CVE-2017-2716 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Mate 9 Firmware The camerafs driver in Mate 9 Versions earlier than MHA-AL00BC00B173 has buffer overflow vulnerability. | 7.8 |
| 2017-11-22 | CVE-2017-2715 | Information Exposure vulnerability in Huawei Files 7.1.1.308/7.1.1.309 The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. | 7.8 |
| 2017-11-22 | CVE-2017-2714 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Fusionsphere Openstack The GaussDB in FusionSphere OpenStack V100R005C10SPC705 and earlier versions has a buffer overflow vulnerability. | 8.0 |
| 2017-11-22 | CVE-2017-2707 | Download of Code Without Integrity Check vulnerability in Huawei Mate 9 Firmware Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. | 7.1 |
| 2017-11-22 | CVE-2017-2706 | Path Traversal vulnerability in Huawei Mate 9 Firmware Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. | 7.1 |