Vulnerabilities > Huawei > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-22 | CVE-2017-8183 | Information Exposure vulnerability in Huawei MTK Platform Smart Phone Firmware Niceal00C00B155/Niceal00C00B160 MTK platform in Huawei smart phones with software of earlier than Nice-AL00C00B160 versions, earlier than Nice-AL10C00B140 versions has a any memory access vulnerability. | 5.5 |
| 2017-11-22 | CVE-2017-8182 | Out-of-bounds Read vulnerability in Huawei MTK Platform Smart Phone Firmware Niceal00C00B155/Niceal00C00B160 MTK platform in Huawei smart phones with software of earlier than Nice-AL00C00B160 versions, earlier than Nice-AL10C00B140 versions has a out-of-bound read vulnerability. | 6.1 |
| 2017-11-22 | CVE-2017-8178 | Cross-site Scripting vulnerability in Huawei Vicky-Al00 Firmware Huawei Email APP Vicky-AL00 smartphones with software of earlier than VKY-AL00C00B171 versions has a stored cross-site scripting vulnerability. | 5.4 |
| 2017-11-22 | CVE-2017-8177 | Improper Verification of Cryptographic Signature vulnerability in Huawei Hiwallet Huawei APP HiWallet earlier than 5.0.3.100 versions do not support signature verification for APK file. | 5.3 |
| 2017-11-22 | CVE-2017-8175 | Improper Input Validation vulnerability in Huawei Vicky-Al00A, Victoria-Al00A and Warsaw-Al00 The Bastet of some Huawei mobile phones with software earlier than Vicky-AL00AC00B167 versions, earlier than Victoria-AL00AC00B167 versions, earlier than Warsaw-AL00C00B191 versions has an insufficient input validation vulnerability due to the lack of parameter validation. | 5.5 |
| 2017-11-22 | CVE-2017-8173 | Unspecified vulnerability in Huawei products Maya-L02,VKY-L09,VTR-L29,Vicky-AL00A,Victoria-AL00A,Warsaw-AL00 smart phones with software of earlier than Maya-L02C636B126 versions,earlier than VKY-L29C10B151 versions,earlier than VTR-L29C10B151 versions,earlier than Vicky-AL00AC00B162 versions,earlier than Victoria-AL00AC00B167 versions,earlier than Warsaw-AL00C00B200 versions have a Factory Reset Protection (FRP) bypass security vulnerability. low complexity huawei | 4.6 |
| 2017-11-22 | CVE-2017-8172 | Improper Validation of Array Index vulnerability in Huawei P10 Firmware and P10 Plus Firmware Isub service in P10 Plus and P10 smart phones with earlier than VKY-AL00C00B157 versions and earlier than VTR-AL00C00B157 versions has a denial of service (DoS) vulnerability. | 5.5 |
| 2017-11-22 | CVE-2017-8171 | Exposure of Resource to Wrong Sphere vulnerability in Huawei P10 Plus Firmware Huawei smart phones with software earlier than Vicky-AL00AC00B172D versions have a Factory Reset Protection (FRP) bypass security vulnerability. | 4.6 |
| 2017-11-22 | CVE-2017-8168 | Missing Encryption of Sensitive Data vulnerability in Huawei Fusionsphere Openstack V100R006C00Spc102(Nfv)/V100R006C10 FusionSphere OpenStack with software V100R006C00SPC102(NFV) and V100R006C10 have an information leak vulnerability. | 4.3 |
| 2017-11-22 | CVE-2017-8166 | Unspecified vulnerability in Huawei Honor V9 Firmware Dukeal20C00B191 Huawei mobile phones Honor V9 with the software versions before Duke-AL20C00B195 have an App Lock bypass vulnerability. low complexity huawei | 6.8 |