There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installing, backing up and restoring a malicious application. Successful exploit could cause information disclosure.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:NHuawei Enjoy 7s
HWHuaweiwszystkie wersjeHuawei Enjoy 7s Firmware
OSHuawei< 9.1.0.130\(c00e115r2p8t8\)Huawei Honor 20s
HWHuaweiwszystkie wersjeHuawei Honor 20s Firmware
OSHuawei< 9.1.1.132\(c00e131r6p1\)Huawei Honor 9i
HWHuaweiwszystkie wersjeHuawei Honor 9i Firmware
OSHuawei< 9.1.0.120\(c00e113r1p6t8\)Huawei Honor 9 Lite
HWHuaweiwszystkie wersjeHuawei Honor 9 Lite Firmware
OSHuawei< 9.1.0.130\(c00e112r2p10t8\)< 9.1.0.143\(c636e5r1p5t8\)Huawei Honor V10
HWHuaweiwszystkie wersjeHuawei Honor V10 Firmware
OSHuawei< 9.1.0.333\(c00e333r2p1t8\)Huawei M6
HWHuaweiwszystkie wersjeHuawei M6 Firmware
OSHuawei< 9.1.1.150\(c00e150r1p150\)Huawei Mate 20
HWHuaweiwszystkie wersjeHuawei Mate 20 Firmware
OSHuawei< 9.1.0.139\(c00e133r3p1\)Huawei P30
HWHuaweiwszystkie wersjeHuawei P30 Firmware
OSHuawei< 9.1.0.226\(c00e220r2p1\)Huawei P30 Pro
HWHuaweiwszystkie wersjeHuawei P30 Pro Firmware
OSHuawei< 9.1.0.226\(c00e210r2p1\)
Related vulnerabilities
There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inp...
There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate...
HUAWEI Mate 30 versions earlier than 10.1.0.150(C00E136R5P3) and HUAWEI P30 version earlier than 10.1.0.160(C0...
HUAWEI Mate 20 versions earlier than 10.0.0.188(C00E74R3P8) have a buffer overflow vulnerability in the Blueto...
HUAWEI P30 Pro versions earlier than 10.1.0.160(C00E160R2P8) and versions earlier than 10.1.0.160(C01E160R2P8)...