Vulnerabilities > Huawei > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-10 | CVE-2019-5220 | Incorrect Authorization vulnerability in Huawei products There is a Factory Reset Protection (FRP) bypass vulnerability on several smartphones. | 4.6 |
| 2019-06-13 | CVE-2019-5286 | Cross-site Scripting vulnerability in Huawei Hedex Lite V200R006C00 There is a reflection XSS vulnerability in the HedEx products. | 6.1 |
| 2019-06-13 | CVE-2019-5245 | Uncontrolled Search Path Element vulnerability in Huawei Hisuite HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. | 5.3 |
| 2019-06-10 | CVE-2019-5243 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Huawei Hg255S Firmware There is a Clickjacking vulnerability in Huawei HG255s product. | 4.3 |
| 2019-06-06 | CVE-2019-5305 | Double Free vulnerability in Huawei Mate 10 Firmware The image processing module of some Huawei Mate 10 smartphones versions before ALP-L29 9.0.0.159(C185) has a memory double free vulnerability. | 5.5 |
| 2019-06-06 | CVE-2019-5295 | Unspecified vulnerability in Huawei Honor View 10 Firmware 9.0.0.202(C567E6R1P12T8) Huawei Honor V10 smartphones versions earlier than Berkeley-AL20 9.0.0.125(C00E125R2P14T8) have an authorization bypass vulnerability. high complexity huawei | 6.4 |
| 2019-06-06 | CVE-2019-5219 | Double Free vulnerability in Huawei Mate 10 Firmware There is a double free vulnerability on certain drivers of Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.181(C00E87R2P20T8). | 5.5 |
| 2019-06-06 | CVE-2019-5214 | Use After Free vulnerability in Huawei Mate 10 Firmware There is a use after free vulnerability on certain driver component in Huawei Mate10 smartphones versions earlier than ALP-AL00B 9.0.0.167(C00E85R2P20T8). | 5.5 |
| 2019-06-04 | CVE-2019-5307 | Authentication Bypass by Capture-replay vulnerability in Huawei P30 Firmware Some Huawei 4G LTE devices, P30 versions before ELE-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1) and P30 Pro versions before VOG-AL00 9.1.0.162(C01E160R1P12/C01E160R2P1), are exposed to a message replay vulnerability. | 4.2 |
| 2019-06-04 | CVE-2019-5300 | Improper Verification of Cryptographic Signature vulnerability in Huawei products There is a digital signature verification bypass vulnerability in AR1200, AR1200-S, AR150, AR160, AR200, AR2200, AR2200-S, AR3200, SRG1300, SRG2300 and SRG3300 Huawei routers. | 6.7 |