Vulnerabilidades en Huawei

1367 resultados
Análisis Vexday

Com 1.362 CVEs catalogadas, o portfólio de vulnerabilidades da Huawei apresenta volume expressivo, embora a taxa de exploração ativa esteja abaixo da média geral do catálogo, com nenhuma entrada confirmada no CISA KEV. O tipo de falha mais frequente é CWE-125 (leitura fora dos limites de buffer), padrão que tende a viabilizar vazamento de informações ou condições de instabilidade em equipamentos de rede e sistemas embarcados. A CVE de maior pontuação EPSS no momento é CVE-2019-5285, com índice de 0,0166 — valor baixo em termos absolutos, mas que ainda merece atenção em ambientes onde o ativo afetado esteja exposto. A ausência de PoCs públicas conhecidas reduz a superfície de exploração imediata, mas os 57 registros de severidade crítica e as 47 CVEs surgidas nos últimos 90 dias indicam que a gestão contínua de patches permanece necessária.

CVE-2025-68967MEDIUMVulnerability of improper permission control in the print module. Impact: Successful exploitation of this vulnerability may affect service cEPSS 0.1%CVE-2026-24920MEDIUMPermission control vulnerability in the AMS module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-58278MEDIUMIdentity authentication bypass vulnerability in the Gallery app. Successful exploitation of this vulnerability may affect service confidentiEPSS 0.1%CVE-2026-24931MEDIUMVulnerability of improper criterion security check in the card module. Impact: Successful exploitation of this vulnerability may affect servEPSS 0.1%CVE-2021-22419A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Local attackers may exploit this vulnerabilEPSS 0.1%CVE-2025-68958HIGHMulti-thread race condition vulnerability in the card framework module. Impact: Successful exploitation of this vulnerability may affect avaEPSS 0.1%CVE-2025-31172HIGHMemory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect serEPSS 0.1%CVE-2026-24927MEDIUMOut-of-bounds access vulnerability in the frequency modulation module. Impact: Successful exploitation of this vulnerability may affect avaiEPSS 0.1%CVE-2025-48911HIGHVulnerability of improper permission assignment in the note sharing module Impact: Successful exploitation of this vulnerability may affect EPSS 0.1%CVE-2025-31173HIGHMemory write permission bypass vulnerability in the kernel futex module Impact: Successful exploitation of this vulnerability may affect serEPSS 0.1%CVE-2025-58292LOWDenial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-58290LOWDenial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-58286LOWDenial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2024-58050MEDIUMVulnerability of improper access permission in the HDC module Impact: Successful exploitation of this vulnerability may affect service confiEPSS 0.1%CVE-2024-58252MEDIUMVulnerability of insufficient information protection in the media library module Impact: Successful exploitation of this vulnerability may aEPSS 0.1%CVE-2025-54620MEDIUMDeserialization vulnerability of untrusted data in the ability module. Impact: Successful exploitation of this vulnerability may affect avaiEPSS 0.1%CVE-2025-46591MEDIUMOut-of-bounds data read vulnerability in the authorization module Impact: Successful exploitation of this vulnerability may affect service cEPSS 0.1%CVE-2024-58046MEDIUMPermission management vulnerability in the lock screen module Impact: Successful exploitation of this vulnerability may affect service confiEPSS 0.1%CVE-2025-58291LOWDenial of service (DoS) vulnerability in the office service. Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2024-42033MEDIUMAccess control vulnerability in the security verification module mpact: Successful exploitation of this vulnerability will affect integrity EPSS 0.1%