Vulnerabilities > Huawei > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-11-22 CVE-2017-2713 Improper Input Validation vulnerability in Huawei P9 Firmware
HUAWEI P9 smartphones with software versions earlier before EVA-L09C432B383, versions earlier before EVA-L09C636B380, versions earlier before VIE-L09C432B370, versions earlier before VIE-L29C636B370 have an insufficient input validation vulnerability.
low complexity
huawei CWE-20
5.4
5.4
2017-11-22 CVE-2017-2712 Channel and Path Errors vulnerability in Huawei S3300 Firmware V100R006C05
S3300 V100R006C05 have an Ethernet in the First Mile (EFM) flapping vulnerability due to the lack of type-length-value (TLV) consistency check.
network
low complexity
huawei CWE-417
5.3
5.3
2017-11-22 CVE-2017-2711 Improper Input Validation vulnerability in Huawei P9 Plus Firmware
P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver.
local
low complexity
huawei CWE-20
5.5
5.5
2017-11-22 CVE-2017-2710 Unspecified vulnerability in Huawei Beethoven-W09A Firmware and Crr-L09 Firmware
BTV-W09C229B002CUSTC229D005,BTV-W09C233B029, earlier than BTV-W09C100B006CUSTC100D002 versions, earlier than BTV-W09C128B003CUSTC128D002 versions, earlier than BTV-W09C199B002CUSTC199D002 versions, earlier than BTV-W09C209B005CUSTC209D001 versions, earlier than BTV-W09C331B002CUSTC331D001 versions, earlier than CRR-L09C432B390 versions, earlier than CRR-L09C605B355CUSTC605D003 versions have a Factory Reset Protection (FRP) bypass security vulnerability.
low complexity
huawei
4.6
4.6
2017-11-22 CVE-2017-2709 Improper Input Validation vulnerability in Huawei Higame and Skytone
HiGame with software earlier than 7.3.0 versions, SkyTone with software earlier than 8.1.1 versions have a DoS Vulnerability.
local
low complexity
huawei CWE-20
5.5
5.5
2017-11-22 CVE-2017-2708 Missing Authentication for Critical Function vulnerability in Huawei Nice Firmware
The 'Find Phone' function in Nice smartphones with software versions earlier before Nice-AL00C00B0135 has an authentication bypass vulnerability.
low complexity
huawei CWE-306
4.6
4.6
2017-11-22 CVE-2017-2703 Unspecified vulnerability in Huawei Mate 9 Firmware and P9 Firmware
Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00BC00B156,Versions earlier before MHA-DL00BC00B156,Versions earlier before MHA-TL00BC00B156,Versions earlier before EVA-AL10C00B373,Versions earlier before EVA-CL10C00B373,Versions earlier before EVA-DL10C00B373,Versions earlier before EVA-TL10C00B373 can be bypass.
low complexity
huawei
6.8
6.8
2017-11-22 CVE-2017-2702 Unspecified vulnerability in Huawei Mate 9 Firmware
Phone Finder in versions earlier before MHA-AL00C00B170 can be bypass.
low complexity
huawei
6.8
6.8
2017-11-22 CVE-2017-2695 Path Traversal vulnerability in Huawei Tit-Al00 Firmware C583B211
TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application.
local
low complexity
huawei CWE-22
5.5
5.5
2017-11-22 CVE-2017-2691 Unspecified vulnerability in Huawei P9 Firmware
Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability.
low complexity
huawei
6.8
6.8