huawei

p40_firmware

2 known vulnerabilities · sorted by CVSS score

CVE-2021-37104

There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3). This vulnerability is due to insufficient validation of parameters while dealing with some messages. A successful exploit could allow the attacker to gain access to certain resource which the attacker are supposed not to do.

huawei / p40_firmware

Network

Published Sep 28, 2021

CVE-2020-9119

MEDIUM6.2

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker needs to physically contact the mobile phone and obtain higher privileges, and execute relevant commands, resulting in the user's privilege promotion.

huawei / mate_10_firmware+4

Physical

Published Dec 24, 2020