HUAWEI nova 4 versions earlier than 10.0.0.165(C01E34R2P4) and SydneyM-AL00 versions earlier than 10.0.0.165(C00E66R1P5) have an out-of-bounds read and write vulnerability. An attacker with specific permissions crafts malformed packet with specific parameter and sends the packet to the affected products. Due to insufficient validation of packet, which may be exploited to cause the information leakage or arbitrary code execution.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HHuawei Nova 4
HWHuaweiwszystkie wersjeHuawei Nova 4 Firmware
OSHuawei< 10.0.0.165\(c01e34r2p4\)Huawei Sydneym Al00
HWHuaweiwszystkie wersjeHuawei Sydneym Al00 Firmware
OSHuawei< 10.0.0.165\(c00e66r1p5\)
Related vulnerabilities
In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to ins...
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially cra...
There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially cra...
Mate 10 Pro;Honor V10;Honor 10;Nova 4 smartphones have a denial of service vulnerability. The system does not ...
A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services wh...