Vulnerabilidades en Huawei

1367 resultados
Análisis Vexday

Com 1.362 CVEs catalogadas, o portfólio de vulnerabilidades da Huawei apresenta volume expressivo, embora a taxa de exploração ativa esteja abaixo da média geral do catálogo, com nenhuma entrada confirmada no CISA KEV. O tipo de falha mais frequente é CWE-125 (leitura fora dos limites de buffer), padrão que tende a viabilizar vazamento de informações ou condições de instabilidade em equipamentos de rede e sistemas embarcados. A CVE de maior pontuação EPSS no momento é CVE-2019-5285, com índice de 0,0166 — valor baixo em termos absolutos, mas que ainda merece atenção em ambientes onde o ativo afetado esteja exposto. A ausência de PoCs públicas conhecidas reduz a superfície de exploração imediata, mas os 57 registros de severidade crítica e as 47 CVEs surgidas nos últimos 90 dias indicam que a gestão contínua de patches permanece necessária.

CVE-2025-46586MEDIUMPermission control vulnerability in the contacts module Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-54631MEDIUMVulnerability of insufficient data length verification in the partition module. Impact: Successful exploitation of this vulnerability may afEPSS 0.1%CVE-2025-58284MEDIUMPermission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service confidentiality.EPSS 0.1%CVE-2025-53172MEDIUMStack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the fEPSS 0.1%CVE-2025-53171MEDIUMStack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the fEPSS 0.1%CVE-2025-54654MEDIUMPermission control vulnerability in the Gallery module. Successful exploitation of this vulnerability may affect service confidentialityEPSS 0.1%CVE-2024-58117MEDIUMStack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the fEPSS 0.1%CVE-2025-53174MEDIUMStack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the fEPSS 0.1%CVE-2025-53175MEDIUMStack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the fEPSS 0.1%CVE-2025-53170MEDIUMNull pointer dereference vulnerability in the application exit cause module Impact: Successful exploitation of this vulnerability may affectEPSS 0.1%CVE-2026-24922MEDIUMBuffer overflow vulnerability in the HDC module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-53176LOWStack overflow risk when vector images are parsed during file preview Impact: Successful exploitation of this vulnerability may affect the fEPSS 0.1%CVE-2025-54644MEDIUMOut-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation oEPSS 0.1%CVE-2025-68959MEDIUMPermission verification bypass vulnerability in the media library module. Impact: Successful exploitation of this vulnerability may affect sEPSS 0.1%CVE-2025-58297MEDIUMBuffer overflow vulnerability in the sensor service. Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-58295MEDIUMBuffer overflow vulnerability in the development framework module. Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-58276MEDIUMPermission verification vulnerability in the home screen module Impact: Successful exploitation of this vulnerability may affect availabilitEPSS 0.1%CVE-2025-68961MEDIUMMulti-thread race condition vulnerability in the camera framework module. Impact: Successful exploitation of this vulnerability may affect aEPSS 0.1%CVE-2025-64314CRITICALPermission control vulnerability in the memory management module. Impact: Successful exploitation of this vulnerability may affect confidentEPSS 0.1%CVE-2025-58282LOWPermission control vulnerability in the camera module. Successful exploitation of this vulnerability may affect service confidentiality.EPSS 0.1%