Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1
CVE-2017-8153
- EPSS 0.09%
- Veröffentlicht 22.11.2017 19:29:03
- Zuletzt bearbeitet 20.04.2025 01:37:25
Huawei VMall (for Android) with the versions before 1.5.8.5 have a privilege elevation vulnerability due to improper design. An attacker can trick users into installing a malicious app which can send out HTTP requests and execute JavaScript code in w...
3.1
CVE-2017-2739
- EPSS 0.02%
- Veröffentlicht 22.11.2017 19:29:02
- Zuletzt bearbeitet 20.04.2025 01:37:25
The upgrade package of Huawei Vmall APP Earlier than HwVmall 1.5.3.0 versions is transferred through HTTP. A man in the middle (MITM) can tamper with the upgrade package of Huawei Vmall APP, and to implant the malicious applications.
4.3
CVE-2017-2694
- EPSS 0.07%
- Veröffentlicht 22.11.2017 19:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. An attacker can construct a malicious application to call it. Consequently, alert music will ...
1