Vulnerabilities in huawei
1,367 resultsCVE-2022-41586HIGHThe communication framework module has a vulnerability of not truncating data properly.Successful exploitation of this vulnerability may affEPSS 0.4%CVE-2022-38984HIGHThe HIPP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability EPSS 0.4%CVE-2023-26549—The SystemUI module has a vulnerability of repeated app restart due to improper parameters. Successful exploitation of this vulnerability maEPSS 0.4%CVE-2022-48347—The MediaProvider module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect confidentiEPSS 0.4%CVE-2022-38998HIGHThe HISP module has a vulnerability of not verifying the data transferred in the kernel space.Successful exploitation of this vulnerability EPSS 0.4%CVE-2023-49239—Unauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiEPSS 0.4%CVE-2023-49247—Permission verification vulnerability in distributed scenarios. Successful exploitation of this vulnerability may affect service confidentiaEPSS 0.4%CVE-2023-49246HIGHUnauthorized access vulnerability in the card management module. Successful exploitation of this vulnerability may affect service confidentiEPSS 0.4%CVE-2023-46759—Permission control vulnerability in the call module. Successful exploitation of this vulnerability may affect service confidentiality.EPSS 0.4%CVE-2023-49240—Unauthorized access vulnerability in the launcher module. Successful exploitation of this vulnerability may affect service confidentiality.EPSS 0.4%CVE-2023-46771HIGHSecurity vulnerability in the face unlock module. Successful exploitation of this vulnerability may affect service confidentiality.EPSS 0.4%CVE-2023-44113HIGHVulnerability of missing permission verification for APIs in the Designed for Reliability (DFR) module. Successful exploitation of this vulnEPSS 0.4%CVE-2023-39396—Deserialization vulnerability in the input module. Successful exploitation of this vulnerability may affect availability.EPSS 0.4%CVE-2023-0117MEDIUMThe online authentication provided by the hwKitAssistant lacks strict identity verification of applications. Successful exploitation of thisEPSS 0.4%CVE-2022-46313MEDIUMThe sensor privacy module has an authentication vulnerability. Successful exploitation of this vulnerability may cause unavailability of theEPSS 0.4%CVE-2019-5280—The SIP TLS module of Huawei CloudLink Phone 7900 with V600R019C10 has a TLS certificate verification vulnerability. Due to insufficient verEPSS 0.4%CVE-2023-37245—Buffer overflow vulnerability in the modem pinctrl module. Successful exploitation of this vulnerability may affect the integrity and availaEPSS 0.4%CVE-2023-52369CRITICALStack overflow vulnerability in the NFC module.Successful exploitation of this vulnerability may affect service availability and integrity.EPSS 0.4%CVE-2023-46755MEDIUMVulnerability of input parameters being not strictly verified in the input. Successful exploitation of this vulnerability may cause the launEPSS 0.4%CVE-2023-6273MEDIUMPermission management vulnerability in the module for disabling Sound Booster. Successful exploitation of this vulnerability may cause featuEPSS 0.4%