CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Huawei » Magic Ui » 4.0.0 * * * : Security Vulnerabilities

Cpe Name:cpe:2.3:o:huawei:magic_ui:4.0.0:*:*:*:*:*:*:*
Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2022-22258 2022-04-11 2022-05-13
7.5
None Remote Low Not required Partial Partial Partial
The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege.
2 CVE-2022-22257 269 2022-04-11 2022-04-18
5.0
None Remote Low Not required None Partial None
The customization framework has a vulnerability of improper permission control.Successful exploitation of this vulnerability may affect data integrity.
3 CVE-2022-22256 2022-04-11 2022-04-19
5.0
None Remote Low Not required Partial None None
The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.
4 CVE-2022-22254 863 Bypass 2022-04-11 2022-04-19
5.0
None Remote Low Not required Partial None None
A permission bypass vulnerability exists when the NFC CAs access the TEE.Successful exploitation of this vulnerability may affect data confidentiality.
5 CVE-2022-22253 354 2022-04-11 2022-04-18
5.0
None Remote Low Not required None Partial None
The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability.
6 CVE-2021-46742 287 2022-04-11 2022-04-15
6.4
None Remote Low Not required None Partial Partial
The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of this vulnerability may affect the availability.
7 CVE-2021-40065 2022-04-11 2022-04-15
5.0
None Remote Low Not required Partial None None
The communication module has a service logic error vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.
8 CVE-2021-40064 787 Overflow 2022-03-10 2022-03-14
7.8
None Remote Low Not required None None Complete
There is a heap-based buffer overflow vulnerability in system components. Successful exploitation of this vulnerability may affect system stability.
9 CVE-2021-40063 2022-03-10 2022-03-14
5.0
None Remote Low Not required Partial None None
There is an improper access control vulnerability in the video module. Successful exploitation of this vulnerability may affect confidentiality.
10 CVE-2021-40061 843 2022-03-10 2022-03-14
5.0
None Remote Low Not required None Partial None
There is a vulnerability of accessing resources using an incompatible type (type confusion) in the Bastet module. Successful exploitation of this vulnerability may affect integrity.
11 CVE-2021-40059 276 2022-03-10 2022-03-14
3.3
None Local Network Low Not required Partial None None
There is a permission control vulnerability in the Wi-Fi module. Successful exploitation of this vulnerability may affect confidentiality.
12 CVE-2021-40055 2022-03-10 2022-03-14
7.1
None Remote Medium Not required None Complete None
There is a man-in-the-middle attack vulnerability during system update download in recovery mode. Successful exploitation of this vulnerability may affect integrity.
13 CVE-2021-40054 191 2022-03-10 2022-03-14
7.8
None Remote Low Not required None Complete None
There is an integer underflow vulnerability in the atcmdserver module. Successful exploitation of this vulnerability may affect integrity.
14 CVE-2021-40053 276 2022-03-10 2022-03-14
6.4
None Remote Low Not required None Partial Partial
There is a permission control vulnerability in the Nearby module. Successful exploitation of this vulnerability will affect availability and integrity.
15 CVE-2021-40051 668 2022-03-10 2022-03-14
5.0
None Remote Low Not required Partial None None
There is an unauthorized access vulnerability in system components. Successful exploitation of this vulnerability will affect confidentiality.
16 CVE-2021-40050 125 Overflow 2022-03-10 2022-03-14
10.0
None Remote Low Not required Complete Complete Complete
There is an out-of-bounds read vulnerability in the IFAA module. Successful exploitation of this vulnerability may cause stack overflow.
17 CVE-2021-40049 276 +Info 2022-03-10 2022-03-14
5.0
None Remote Low Not required Partial None None
There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization.
18 CVE-2021-40048 131 2022-03-10 2022-03-14
7.8
None Remote Low Not required None None Complete
There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability.
19 CVE-2021-40047 401 2022-03-10 2022-03-14
7.8
None Remote Low Not required None Complete None
There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity.
20 CVE-2021-40045 347 2022-02-09 2022-02-16
2.1
None Local Low Not required Partial None None
There is a vulnerability of signature verification mechanism failure in system upgrade through recovery mode.Successful exploitation of this vulnerability may affect service confidentiality.
21 CVE-2021-40044 863 2022-02-09 2022-02-16
5.8
None Local Network Low Not required Partial Partial Partial
There is a permission verification vulnerability in the Bluetooth module.Successful exploitation of this vulnerability may cause unauthorized operations.
22 CVE-2021-40039 476 2022-01-10 2022-01-13
5.0
None Remote Low Not required None Partial None
There is a Null pointer dereference vulnerability in the camera module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
23 CVE-2021-40038 415 2022-01-10 2022-01-13
5.0
None Remote Low Not required None Partial None
There is a Double free vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
24 CVE-2021-40037 843 2022-01-10 2022-01-13
4.9
None Local Low Not required None None Complete
There is a Vulnerability of accessing resources using an incompatible type (type confusion) in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart.
25 CVE-2021-40035 120 Overflow 2022-01-10 2022-01-13
5.0
None Remote Low Not required None None Partial
There is a Buffer overflow vulnerability due to a boundary error with the Samba server in the file management module in smartphones. Successful exploitation of this vulnerability may affect function stability.
26 CVE-2021-40031 476 2022-01-10 2022-01-13
5.0
None Remote Low Not required None Partial None
There is a Null pointer dereference vulnerability in the camera module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
27 CVE-2021-40029 120 Overflow 2022-01-10 2022-01-13
5.0
None Remote Low Not required None None Partial
There is a Buffer overflow vulnerability due to a boundary error with the Samba server in the file management module in smartphones. Successful exploitation of this vulnerability may affect function stability.
28 CVE-2021-40026 787 Overflow 2022-01-10 2022-01-13
5.0
None Remote Low Not required None Partial None
There is a Heap-based buffer overflow vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
29 CVE-2021-40020 125 2022-01-10 2022-01-13
5.0
None Remote Low Not required Partial None None
There is an Out-of-bounds array read vulnerability in the security storage module in smartphones. Successful exploitation of this vulnerability may affect service confidentiality.
30 CVE-2021-40015 362 2022-02-09 2022-02-16
1.9
None Local Medium Not required None None Partial
There is a race condition vulnerability in the binder driver subsystem in the kernel.Successful exploitation of this vulnerability may affect kernel stability.
31 CVE-2021-40011 400 2022-01-10 2022-04-25
5.0
None Remote Low Not required None Partial None
There is an uncontrolled resource consumption vulnerability in the display module. Successful exploitation of this vulnerability may affect integrity.
32 CVE-2021-40009 787 2022-01-10 2022-01-13
5.0
None Remote Low Not required None None Partial
There is an Out-of-bounds write vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.
33 CVE-2021-39998 2022-01-10 2022-01-13
7.8
None Remote Low Not required None None Complete
There is Vulnerability of APIs being concurrently called for multiple times in HwConnectivityExService a in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart.
34 CVE-2021-39996 787 Overflow 2022-01-10 2022-01-13
7.5
None Remote Low Not required Partial Partial Partial
There is a Heap-based buffer overflow vulnerability with the NFC module in smartphones. Successful exploitation of this vulnerability may cause memory overflow.
35 CVE-2021-39993 190 Overflow 2022-01-10 2022-01-14
7.5
None Remote Low Not required Partial Partial Partial
There is an Integer overflow vulnerability with ACPU in smartphones. Successful exploitation of this vulnerability may cause out-of-bounds access.
36 CVE-2021-39973 476 2022-01-03 2022-01-13
7.8
None Remote Low Not required None None Complete
There is a Null pointer dereference in Smartphones.Successful exploitation of this vulnerability may cause the kernel to break down.
37 CVE-2021-39969 668 2022-01-03 2022-01-13
5.0
None Remote Low Not required Partial None None
There is an Unauthorized file access vulnerability in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
38 CVE-2021-39966 909 2022-01-03 2022-01-13
5.0
None Remote Low Not required Partial None None
There is an Uninitialized AOD driver structure in Smartphones.Successful exploitation of this vulnerability may affect service confidentiality.
39 CVE-2021-37119 2022-01-03 2022-01-11
5.0
None Remote Low Not required None None Partial
There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.
40 CVE-2021-37117 2022-01-03 2022-01-11
5.0
None Remote Low Not required None None Partial
There is a Service logic vulnerability in Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.
41 CVE-2021-37110 2022-01-03 2022-01-11
5.0
None Remote Low Not required Partial None None
There is a Timing design defects in Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
42 CVE-2021-37103 276 2022-02-25 2022-03-08
2.1
None Local Low Not required Partial None None
There is an improper permission management vulnerability in the Wallet apps. Successful exploitation of this vulnerability may affect service confidentiality.
43 CVE-2021-37097 94 2021-12-08 2021-12-15
7.8
None Remote Low Not required None None Complete
There is a Code Injection vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to system restart.
44 CVE-2021-37093 2021-12-08 2021-12-09
5.0
None Remote Low Not required Partial None None
There is a Improper Access Control vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to attackers steal short messages.
45 CVE-2021-37074 362 2021-12-08 2021-12-09
9.3
None Remote Medium Not required Complete Complete Complete
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to the user root privilege escalation.
46 CVE-2021-37069 362 2021-12-08 2021-12-09
5.8
None Remote Medium Not required Partial None Partial
There is a Race Condition vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to availability affected.
47 CVE-2021-37055 Bypass +Info 2021-12-07 2021-12-07
5.0
None Remote Low Not required Partial None None
There is a Logic bypass vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may allow attempts to obtain certain device information.
48 CVE-2021-37053 2021-12-08 2021-12-09
5.0
None Remote Low Not required None None Partial
There is a Service logic vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause WLAN DoS.
49 CVE-2021-37052 755 +Info 2021-12-08 2021-12-09
5.0
None Remote Low Not required Partial None None
There is an Exception log vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause address information leakage.
50 CVE-2021-37050 311 2021-12-08 2021-12-09
5.0
None Remote Low Not required Partial None None
There is a Missing sensitive data encryption vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service confidentiality.
Total number of vulnerabilities : 184   Page : 1 (This Page)2 3 4
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.