Huawei

Cornell-al00a Firmware

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2019-5302

  • EPSS 0.06%
  • Published 27.04.2020 20:15:12
  • Last modified 21.11.2024 04:44:42

There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing th...

5.3

CVE-2019-5303

  • EPSS 0.06%
  • Published 27.04.2020 20:15:12
  • Last modified 21.11.2024 04:44:42

There are two denial of service vulnerabilities on some Huawei smartphones. An attacker may send specially crafted TD-SCDMA messages from a rogue base station to the affected devices. Due to insufficient input validation of two values when parsing th...

7.8

CVE-2020-0069

Warning
  • EPSS 0.74%
  • Published 10.03.2020 20:15:21
  • Last modified 04.04.2025 13:01:47

In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution...

8.1

CVE-2019-9506

  • EPSS 3.04%
  • Published 14.08.2019 17:15:11
  • Last modified 21.11.2024 04:51:45

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") tha...