Vulnerabilities > Huawei > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-06-16 CVE-2023-34165 Missing Authorization vulnerability in Huawei Harmonyos 2.1
Unauthorized access vulnerability in the Save for later feature provided by AI Touch.Successful exploitation of this vulnerability may cause third-party apps to forge a URI for unauthorized access with zero permissions.
network
low complexity
huawei CWE-862
5.3
2023-05-26 CVE-2023-0117 Improper Authentication vulnerability in Huawei Emui 13.0.0
The online authentication provided by the hwKitAssistant lacks strict identity verification of applications.
network
low complexity
huawei CWE-287
5.3
2023-04-16 CVE-2022-48313 Unspecified vulnerability in Huawei Emui and Harmonyos
The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process.
low complexity
huawei
6.5
2023-04-16 CVE-2022-48314 Unspecified vulnerability in Huawei Emui and Harmonyos
The Bluetooth module has a vulnerability of bypassing the user confirmation in the pairing process.
low complexity
huawei
6.5
2023-03-27 CVE-2022-48291 Missing Authentication for Critical Function vulnerability in Huawei Emui and Harmonyos
The Bluetooth module has an authentication bypass vulnerability in the pairing process.
low complexity
huawei CWE-306
6.5
2023-03-27 CVE-2022-48354 Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos
The Bluetooth module has a heap out-of-bounds write vulnerability.
low complexity
huawei CWE-787
6.5
2023-03-27 CVE-2022-48355 Out-of-bounds Write vulnerability in Huawei Emui and Harmonyos
The Bluetooth module has a heap out-of-bounds read vulnerability.
low complexity
huawei CWE-787
6.5
2023-03-27 CVE-2022-48361 Path Traversal vulnerability in Huawei Emui and Harmonyos
The Always On Display (AOD) has a path traversal vulnerability in theme files.
network
low complexity
huawei CWE-22
5.3
2023-02-27 CVE-2022-48254 Unspecified vulnerability in Huawei Leia-B29 Firmware Leiab292.0.0.49(M03)
There is a data processing error vulnerability in Leia-B29 2.0.0.49(M03).
low complexity
huawei
4.6
2023-02-27 CVE-2022-48305 Unspecified vulnerability in Huawei Simba-Al00 Firmware 1.1.1.274
There is an identity authentication bypass vulnerability in Huawei Children Smart Watch (Simba-AL00) 1.1.1.274.
local
low complexity
huawei
5.5