Huawei Tony-al00b_firmware
9 CVEs affecting Huawei Tony-al00b_firmware. Latest disclosed: 2021-07-13. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2019-9506 | High | 8.1 | 2019-08-14 | The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influen… |
CVE-2020-9247 | High | 7.8 | 2020-12-07 | There is a buffer overflow vulnerability in several Huawei products. The system does not sufficiently validate certain configuration parameter which is passed… |
CVE-2020-0069 | High | 7.8 | 2020-03-10 | In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux… |
CVE-2019-2215 | High | 7.8 | 2019-10-11 | A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerab… |
CVE-2020-9076 | Medium | 6.8 | 2020-06-15 | HUAWEI P30;HUAWEI P30 Pro;Tony-AL00B smartphones with versions earlier than 10.1.0.135(C00E135R2P11); versions earlier than 10.1.0.135(C00E135R2P8), versions e… |
CVE-2020-9235 | Medium | 5.5 | 2020-09-03 | Huawei smartphones HONOR 20 PRO Versions earlier than 10.1.0.230(C432E9R5P1),Versions earlier than 10.1.0.231(C10E3R3P2),Versions earlier than 10.1.0.231(C185E… |
CVE-2019-5235 | Medium | 5.3 | 2019-12-14 | Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this v… |
CVE-2021-22440 | Medium | 4.6 | 2021-07-13 | There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that… |
CVE-2020-9109 | Medium | 4.6 | 2020-10-12 | There is an information disclosure vulnerability in several smartphones. The device does not sufficiently validate the identity of smart wearable device in cer… |