Vulnerabilities > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-04-02 | CVE-2016-8764 | Improper Input Validation vulnerability in Huawei P8 Lite Firmware, P9 Firmware and P9 Lite Firmware The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to read and write user-mode memory data anywhere in the TrustZone driver. | 6.4 |
| 2017-04-02 | CVE-2016-8762 | Improper Input Validation vulnerability in Huawei P8 Lite Firmware, P9 Firmware and P9 Lite Firmware The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to cause the system to restart. | 5.0 |
| 2017-04-02 | CVE-2016-8758 | Improper Input Validation vulnerability in Huawei Mate 8 Firmware ION memory management module in Huawei Mate8 phones with software NXT-AL10C00B561 and earlier versions, NXT-CL10C00B561 and earlier versions, NXT-DL10C00B561 and earlier versions, NXT-TL10C00B561 and earlier versions allows attackers to cause a denial of service (restart). | 5.5 |
| 2017-04-02 | CVE-2016-8756 | Improper Input Validation vulnerability in Huawei Mate 8 Firmware ION memory management module in Huawei Mate 8 phones with software NXT-AL10C00B197 and earlier versions, NXT-DL10C00B197 and earlier versions, NXT-TL10C00B197 and earlier versions, NXT-CL10C00B197 and earlier versions allows attackers to cause a denial of service (restart). | 5.5 |
| 2017-04-02 | CVE-2016-8275 | Improper Input Validation vulnerability in Huawei Anyoffice V200R006C00 Huawei AnyOffice V200R006C00 could allow an authenticated, remote attacker to cause the software to deny services by uploading an XML bomb. | 6.5 |
| 2017-04-02 | CVE-2016-8272 | Information Exposure vulnerability in Huawei Hisuite 4.0.5.300Ove Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user's proxy password, causing information leaks. | 5.3 |
| 2017-04-02 | CVE-2016-8271 | Information Exposure vulnerability in Huawei Espace IAD Firmware V300R001C07Spca00/V300R002C01/V300R002C01Spc100 Huawei eSpace IAD V300R002C01SPC100 and earlier versions have an information leak vulnerability; an attacker can check and download the fault information by accessing a special URL. | 5.3 |
| 2017-04-02 | CVE-2016-6177 | Integer Overflow or Wraparound vulnerability in Huawei Oceanstor 5800 V3 Firmware V300R003C00 The Huawei OceanStor 5800 V300R003C00 has an integer overflow vulnerability. | 6.5 |
| 2017-04-02 | CVE-2015-8670 | Improper Input Validation vulnerability in Huawei Logcenter V100R001C10 Huawei LogCenter V100R001C10 could allow an authenticated attacker to add abnormal device information to the log collection module, causing denial of service. | 6.5 |
| 2017-04-02 | CVE-2015-7847 | Improper Input Validation vulnerability in Huawei E3272S Firmware Huawei MBB (Mobile Broadband) product E3272s with software versions earlier than E3272s-153TCPU-V200R002B491D09SP00C00 has a Denial of Service (DoS) vulnerability. | 5.5 |