Vulnerabilidades en Huawei

1367 resultados
Análisis Vexday

Com 1.362 CVEs catalogadas, o portfólio de vulnerabilidades da Huawei apresenta volume expressivo, embora a taxa de exploração ativa esteja abaixo da média geral do catálogo, com nenhuma entrada confirmada no CISA KEV. O tipo de falha mais frequente é CWE-125 (leitura fora dos limites de buffer), padrão que tende a viabilizar vazamento de informações ou condições de instabilidade em equipamentos de rede e sistemas embarcados. A CVE de maior pontuação EPSS no momento é CVE-2019-5285, com índice de 0,0166 — valor baixo em termos absolutos, mas que ainda merece atenção em ambientes onde o ativo afetado esteja exposto. A ausência de PoCs públicas conhecidas reduz a superfície de exploração imediata, mas os 57 registros de severidade crítica e as 47 CVEs surgidas nos últimos 90 dias indicam que a gestão contínua de patches permanece necessária.

CVE-2025-58308HIGHVulnerability of improper criterion security check in the call module. Impact: Successful exploitation of this vulnerability may cause featuEPSS 0.1%CVE-2026-41974LOWPermission control vulnerability in service notifications. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2026-28547MEDIUMVulnerability of uninitialized pointer access in the scanning module. Impact: Successful exploitation of this vulnerability may affect availEPSS 0.1%CVE-2025-54649MEDIUMVulnerability of using incompatible types to access resources in the location service. Impact: Successful exploitation of this vulnerabilityEPSS 0.1%CVE-2025-58304MEDIUMPermission control vulnerability in the file management module. Impact: Successful exploitation of this vulnerability may affect service conEPSS 0.1%CVE-2026-41985MEDIUMUAF vulnerability in the package management module. Impact: Successful exploitation of this vulnerability may affect service integrity.EPSS 0.1%CVE-2026-34858MEDIUMUAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-66329MEDIUMPermission control vulnerability in the window management module. Impact: Successful exploitation of this vulnerability may affect availabilEPSS 0.1%CVE-2026-24929MEDIUMOut-of-bounds read vulnerability in the graphics module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2026-41981MEDIUMOut-of-bounds write vulnerability in the IPC module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2026-28543MEDIUMRace condition vulnerability in the maintenance and diagnostics module. Impact: Successful exploitation of this vulnerability may affect avaEPSS 0.1%CVE-2025-58307MEDIUMUAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2026-28548HIGHVulnerability of improper verification in the email application. Impact: Successful exploitation of this vulnerability may affect service coEPSS 0.1%CVE-2026-28537MEDIUMDouble free vulnerability in the window module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2026-34857MEDIUMUAF vulnerability in the communication module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-58312MEDIUMPermission control vulnerability in the App Lock module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-58296HIGHRace condition vulnerability in the audio module. Impact: Successful exploitation of this vulnerability may affect function stability.EPSS 0.1%CVE-2025-58311MEDIUMUAF vulnerability in the USB driver module. Impact: Successful exploitation of this vulnerability will affect availability and confidentialiEPSS 0.1%CVE-2025-58303HIGHUAF vulnerability in the screen recording framework module. Impact: Successful exploitation of this vulnerability may affect availability.EPSS 0.1%CVE-2025-54629MEDIUMRace condition issue occurring in the physical page import process of the memory management module. Impact: Successful exploitation of this EPSS 0.1%