There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inputs sufficiently. Attackers can exploit this vulnerability by sending a malicious application request to launch JavaScript injection. This may compromise normal service. Affected product versions include HUAWEI P30 versions earlier than 10.1.0.165(C01E165R2P11), 11.0.0.118(C635E2R1P3), 11.0.0.120(C00E120R2P5), 11.0.0.138(C10E4R5P3), 11.0.0.138(C185E4R7P3), 11.0.0.138(C432E8R2P3), 11.0.0.138(C461E4R3P3), 11.0.0.138(C605E4R1P3), and 11.0.0.138(C636E4R3P3).
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HHuawei P30
HWHuaweiwszystkie wersjeHuawei P30 Firmware
OSHuawei< 11.0.0.118\(c635e2r1p3\)< 11.0.0.120\(c00e120r2p5\)< 11.0.0.138\(c10e4r5p3\)< 11.0.0.138\(c185e4r7p3\)< 11.0.0.138\(c432e8r2p3\)< 11.0.0.138\(c461e4r3p3\)< 11.0.0.138\(c605e4r1p3\)< 10.1.0.165\(c01e165r2p11\)< 11.0.0.138\(c636e4r3p3\)
Powiązane podatności
There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate...
HUAWEI Mate 30 versions earlier than 10.1.0.150(C00E136R5P3) and HUAWEI P30 version earlier than 10.1.0.160(C0...
HUAWEI smartphones P30 with versions earlier than 10.0.0.185(C00E85R1P11) have an improper access control vuln...
HUAWEI P30 smartphones with versions earlier than 10.0.0.173(C00E73R1P11) have an improper authentication vuln...
In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect ...