Vulnerabilities > Huawei > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-22 | CVE-2017-2715 | Information Exposure vulnerability in Huawei Files 7.1.1.308/7.1.1.309 The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. | 7.8 |
| 2017-11-22 | CVE-2017-2714 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Fusionsphere Openstack The GaussDB in FusionSphere OpenStack V100R005C10SPC705 and earlier versions has a buffer overflow vulnerability. | 8.0 |
| 2017-11-22 | CVE-2017-2707 | Download of Code Without Integrity Check vulnerability in Huawei Mate 9 Firmware Mate 9 smartphones with software MHA-AL00AC00B125 have a privilege escalation vulnerability in Push module. | 7.1 |
| 2017-11-22 | CVE-2017-2706 | Path Traversal vulnerability in Huawei Mate 9 Firmware Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. | 7.1 |
| 2017-11-22 | CVE-2017-2704 | Information Exposure vulnerability in Huawei products Smarthome 1.0.2.364 and earlier versions,HiAPP 7.3.0.303 and earlier versions,HwParentControl 2.0.0 and earlier versions,HwParentControlParent 5.1.0.12 and earlier versions,Crowdtest 1.5.3 and earlier versions,HiWallet 8.0.0.301 and earlier versions,Huawei Pay 8.0.0.300 and earlier versions,Skytone 8.1.2.300 and earlier versions,HwCloudDrive(EMUI6.0) 8.0.0.307 and earlier versions,HwPhoneFinder(EMUI6.0) 9.3.0.310 and earlier versions,HwPhoneFinder(EMUI5.1) 9.2.2.303 and earlier versions,HiCinema 8.0.2.300 and earlier versions,HuaweiWear 21.0.0.360 and earlier versions,HiHealthApp 3.0.3.300 and earlier versions have an information exposure vulnerability. | 7.5 |
| 2017-11-22 | CVE-2017-2700 | Missing Release of Resource after Effective Lifetime vulnerability in Huawei Ac6005 Firmware and Ac6605 Firmware AC6005 with software V200R006C10, AC6605 with software V200R006C10 have a DoS Vulnerability. | 7.5 |
| 2017-11-22 | CVE-2017-2699 | Unrestricted Upload of File with Dangerous Type vulnerability in Huawei Honor 7 Firmware, Lyo-L21 Firmware and Mate S Firmware The Huawei Themes APP in versions earlier than PLK-UL00C17B385, versions earlier than CRR-L09C432B380, versions earlier than LYO-L21C577B128 has a privilege elevation vulnerability. | 7.8 |
| 2017-11-22 | CVE-2017-2698 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei P8 Firmware The ddr_devfreq driver in versions earlier than GRA-UL00C00B197 has buffer overflow vulnerability. | 7.8 |
| 2017-11-22 | CVE-2017-2697 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei products The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B160 and earlier versions,VNS-L21C185B142 and earlier versions,CAM-L21C10B130 and earlier versions,CAM-L21C185B141 and earlier versions has buffer overflow vulnerability. | 7.8 |
| 2017-11-22 | CVE-2017-2696 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Huawei Y6Ii Firmware The emerg_data driver in CAM-L21C10B130 and earlier versions, CAM-L21C185B141 and earlier versions has a buffer overflow vulnerability. | 7.8 |