Vulnerabilities > Huawei > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-01-10 | CVE-2021-40009 | Out-of-bounds Write vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Out-of-bounds write vulnerability in the AOD module in smartphones. | 5.3 |
| 2022-01-10 | CVE-2021-40037 | Type Confusion vulnerability in Huawei Emui, Harmonyos and Magic UI There is a Vulnerability of accessing resources using an incompatible type (type confusion) in the MPTCP subsystem in smartphones. | 5.5 |
| 2022-01-10 | CVE-2021-40041 | Cross-site Scripting vulnerability in Huawei Ws318N-21 Firmware 10.0.2.2/10.0.2.5/10.0.2.6 There is a Cross-Site Scripting(XSS) vulnerability in HUAWEI WS318n product when processing network settings. | 4.2 |
| 2022-01-03 | CVE-2021-37112 | Exposure of Resource to Wrong Sphere vulnerability in Huawei Harmonyos Hisuite module has a External Control of System or Configuration Setting vulnerability.Successful exploitation of this vulnerability may lead to Firmware leak. | 5.3 |
| 2022-01-03 | CVE-2021-37114 | Out-of-bounds Read vulnerability in Huawei Emui, Harmonyos and Magic UI There is an Out-of-bounds read vulnerability in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality. | 5.3 |
| 2022-01-03 | CVE-2021-37118 | Improper Handling of Exceptional Conditions vulnerability in Huawei Harmonyos The HwNearbyMain module has a Improper Handling of Exceptional Conditions vulnerability.Successful exploitation of this vulnerability may lead to message leak. | 5.3 |
| 2022-01-03 | CVE-2021-37132 | Incorrect Default Permissions vulnerability in Huawei Harmonyos PackageManagerService has a Permissions, Privileges, and Access Controls vulnerability .Successful exploitation of this vulnerability may cause that Third-party apps can obtain the complete list of Harmony apps without permission. | 5.3 |
| 2022-01-03 | CVE-2021-39980 | Information Exposure vulnerability in Huawei Harmonyos 2.0 Telephony application has a Exposure of Sensitive Information to an Unauthorized Actor vulnerability.Successful exploitation of this vulnerability could lead to sensitive information disclosure. | 5.3 |
| 2022-01-03 | CVE-2021-39981 | Unspecified vulnerability in Huawei Harmonyos 2.0 Chang Lian application has a vulnerability which can be maliciously exploited to hide the calling number.Successful exploitation of this vulnerability allows you to make an anonymous call. | 5.3 |
| 2021-12-13 | CVE-2021-40007 | Improper Encoding or Escaping of Output vulnerability in Huawei Ecns280 TD Firmware V100R005C10Spc650 There is an information leak vulnerability in eCNS280_TD V100R005C10SPC650. | 6.5 |