Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Huawei Subscribe
Filtered by product Mha-al00a
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-17327 1 Huawei 2 Mha-al00a, Mha-al00a Firmware 2019-10-02 4.3 MEDIUM 5.5 MEDIUM
Huawei smartphones with software of MHA-AL00AC00B125 have an improper resource management vulnerability. The software does not properly manage the resource when do device register operation. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could cause certain service unavailable.
CVE-2017-17328 1 Huawei 2 Mha-al00a, Mha-al00a Firmware 2018-03-29 7.1 HIGH 5.5 MEDIUM
Huawei smartphones with software of MHA-AL00AC00B125 have an integer overflow vulnerability. The software does not process certain variable properly when handle certain process. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could cause information disclosure.
CVE-2017-17201 1 Huawei 12 Berlin-emui5.0, Berlin-emui5.0 Firmware, Berlin-l21 and 9 more 2018-03-14 4.3 MEDIUM 5.5 MEDIUM
Some huawei smartphones with software BTV-DL09C233B350, Berlin-L21HNC432B360, Berlin-L22HNC636B360, Berlin-L24HNC567B360, Berlin-L21C10B130, Berlin-L21C185B132, Berlin-L21C464B130, Berlin-L22C346B140, Berlin-L22C636B160, Berlin-L23C605B131, Berlin-L23DOMC109B160, MHA-AL00AC00B125 have a DoS vulnerability. Due to insufficient input validation, an attacker could trick a user to execute a malicious application, which could be exploited by attacker to launch DoS attacks.
CVE-2017-8186 1 Huawei 1 Mha-al00a 2017-12-11 7.1 HIGH 5.5 MEDIUM
The Bastet of some Huawei mobile phones with software of earlier than MHA-AL00BC00B231 versions has a DOS vulnerability due to the lack of parameter validation. An attacker may trick a user into installing a malicious APP. The APP can modify specific parameter to cause system reboot.