Vulnerabilities > Huawei > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-22 | CVE-2017-2710 | Unspecified vulnerability in Huawei Beethoven-W09A Firmware and Crr-L09 Firmware BTV-W09C229B002CUSTC229D005,BTV-W09C233B029, earlier than BTV-W09C100B006CUSTC100D002 versions, earlier than BTV-W09C128B003CUSTC128D002 versions, earlier than BTV-W09C199B002CUSTC199D002 versions, earlier than BTV-W09C209B005CUSTC209D001 versions, earlier than BTV-W09C331B002CUSTC331D001 versions, earlier than CRR-L09C432B390 versions, earlier than CRR-L09C605B355CUSTC605D003 versions have a Factory Reset Protection (FRP) bypass security vulnerability. low complexity huawei | 4.6 |
| 2017-11-22 | CVE-2017-2709 | Improper Input Validation vulnerability in Huawei Higame and Skytone HiGame with software earlier than 7.3.0 versions, SkyTone with software earlier than 8.1.1 versions have a DoS Vulnerability. | 5.5 |
| 2017-11-22 | CVE-2017-2708 | Missing Authentication for Critical Function vulnerability in Huawei Nice Firmware The 'Find Phone' function in Nice smartphones with software versions earlier before Nice-AL00C00B0135 has an authentication bypass vulnerability. | 4.6 |
| 2017-11-22 | CVE-2017-2703 | Unspecified vulnerability in Huawei Mate 9 Firmware and P9 Firmware Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00BC00B156,Versions earlier before MHA-DL00BC00B156,Versions earlier before MHA-TL00BC00B156,Versions earlier before EVA-AL10C00B373,Versions earlier before EVA-CL10C00B373,Versions earlier before EVA-DL10C00B373,Versions earlier before EVA-TL10C00B373 can be bypass. low complexity huawei | 6.8 |
| 2017-11-22 | CVE-2017-2702 | Unspecified vulnerability in Huawei Mate 9 Firmware Phone Finder in versions earlier before MHA-AL00C00B170 can be bypass. low complexity huawei | 6.8 |
| 2017-11-22 | CVE-2017-2695 | Path Traversal vulnerability in Huawei Tit-Al00 Firmware C583B211 TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application. | 5.5 |
| 2017-11-22 | CVE-2017-2691 | Unspecified vulnerability in Huawei P9 Firmware Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability. low complexity huawei | 6.8 |
| 2017-11-22 | CVE-2017-2690 | Resource Exhaustion vulnerability in Huawei products SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200R003C30,eSpace U1960 with software V200R003C20, V200R003C30,eSpace U1980 with software V200R003C20, V200R003C30,eSpace U1981 with software V200R003C20 and V200R003C30 have an denial of service (DoS) vulnerability, which allow an attacker with specific permission to craft a file containing malicious data and upload it to the device to exhaust memory, causing a DoS condition. | 5.5 |
| 2017-09-25 | CVE-2015-7846 | Information Exposure vulnerability in Huawei products Huawei S7700, S9700, S9300 before V200R07C00SPC500, and AR200, AR1200, AR2200, AR3200 before V200R005C20SPC200 allows attackers with physical access to the CF card to obtain sensitive information. | 4.6 |
| 2017-09-25 | CVE-2015-6592 | 7PK - Security Features vulnerability in Huawei Uap2105 Firmware Huawei UAP2105 before V300R012C00SPC160(BootRom) does not require authentication to the serial port or the VxWorks shell. | 6.8 |