Vulnerabilities > Huawei > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-11-22 | CVE-2017-2712 | Channel and Path Errors vulnerability in Huawei S3300 Firmware V100R006C05 S3300 V100R006C05 have an Ethernet in the First Mile (EFM) flapping vulnerability due to the lack of type-length-value (TLV) consistency check. | 5.3 |
| 2017-11-22 | CVE-2017-2711 | Improper Input Validation vulnerability in Huawei P9 Plus Firmware P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver. | 5.5 |
| 2017-11-22 | CVE-2017-2710 | Unspecified vulnerability in Huawei Beethoven-W09A Firmware and Crr-L09 Firmware BTV-W09C229B002CUSTC229D005,BTV-W09C233B029, earlier than BTV-W09C100B006CUSTC100D002 versions, earlier than BTV-W09C128B003CUSTC128D002 versions, earlier than BTV-W09C199B002CUSTC199D002 versions, earlier than BTV-W09C209B005CUSTC209D001 versions, earlier than BTV-W09C331B002CUSTC331D001 versions, earlier than CRR-L09C432B390 versions, earlier than CRR-L09C605B355CUSTC605D003 versions have a Factory Reset Protection (FRP) bypass security vulnerability. low complexity huawei | 4.6 |
| 2017-11-22 | CVE-2017-2709 | Improper Input Validation vulnerability in Huawei Higame and Skytone HiGame with software earlier than 7.3.0 versions, SkyTone with software earlier than 8.1.1 versions have a DoS Vulnerability. | 5.5 |
| 2017-11-22 | CVE-2017-2708 | Missing Authentication for Critical Function vulnerability in Huawei Nice Firmware The 'Find Phone' function in Nice smartphones with software versions earlier before Nice-AL00C00B0135 has an authentication bypass vulnerability. | 4.6 |
| 2017-11-22 | CVE-2017-2703 | Unspecified vulnerability in Huawei Mate 9 Firmware and P9 Firmware Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00BC00B156,Versions earlier before MHA-DL00BC00B156,Versions earlier before MHA-TL00BC00B156,Versions earlier before EVA-AL10C00B373,Versions earlier before EVA-CL10C00B373,Versions earlier before EVA-DL10C00B373,Versions earlier before EVA-TL10C00B373 can be bypass. low complexity huawei | 6.8 |
| 2017-11-22 | CVE-2017-2702 | Unspecified vulnerability in Huawei Mate 9 Firmware Phone Finder in versions earlier before MHA-AL00C00B170 can be bypass. low complexity huawei | 6.8 |
| 2017-11-22 | CVE-2017-2695 | Path Traversal vulnerability in Huawei Tit-Al00 Firmware C583B211 TIT-AL00C583B211 has a directory traversal vulnerability which allows an attacker to obtain the files in email application. | 5.5 |
| 2017-11-22 | CVE-2017-2691 | Unspecified vulnerability in Huawei P9 Firmware Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability. low complexity huawei | 6.8 |
| 2017-11-22 | CVE-2017-2690 | Resource Exhaustion vulnerability in Huawei products SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200R003C30,eSpace U1960 with software V200R003C20, V200R003C30,eSpace U1980 with software V200R003C20, V200R003C30,eSpace U1981 with software V200R003C20 and V200R003C30 have an denial of service (DoS) vulnerability, which allow an attacker with specific permission to craft a file containing malicious data and upload it to the device to exhaust memory, causing a DoS condition. | 5.5 |