Huawei Laya-al00ep_firmware
5 CVEs affecting Huawei Laya-al00ep_firmware. Latest disclosed: 2021-07-13. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-9506 | High | 8.1 | 2019-08-14 | The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influen… |
CVE-2020-9247 | High | 7.8 | 2020-12-07 | There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed… |
CVE-2019-5235 | Medium | 5.3 | 2019-12-14 | Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this v… |
CVE-2021-22440 | Medium | 4.6 | 2021-07-13 | There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that… |
CVE-2020-9109 | Medium | 4.6 | 2020-10-12 | There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in cer… |