Huawei Emui vulnerabilities

CVE-2024-56449 [HIGH] CWE-840 CVE-2024-56449: Privilege escalation vulnerability in the Account module Impact: Successful exploitation of this vul Privilege escalation vulnerability in the Account module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2023-52954 [HIGH] CWE-701 CVE-2023-52954: Vulnerability of improper permission control in the Gallery module Impact: Successful exploitation o Vulnerability of improper permission control in the Gallery module Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2024-56450 [MEDIUM] CWE-120 CVE-2024-56450: Buffer overflow vulnerability in the component driver module Impact: Successful exploitation of this Buffer overflow vulnerability in the component driver module Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2024-56441 [MEDIUM] CWE-362 CVE-2024-56441: Race condition vulnerability in the Bastet module Impact: Successful exploitation of this vulnerabil Race condition vulnerability in the Bastet module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-54099 [HIGH] CWE-552 CVE-2024-54099: File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability File replacement vulnerability on some devices Impact: Successful exploitation of this vulnerability will affect integrity and confidentiality.

CVE-2024-54100 [HIGH] CWE-20 CVE-2024-54100: Vulnerability of improper access control in the secure input module Impact: Successful exploitation Vulnerability of improper access control in the secure input module Impact: Successful exploitation of this vulnerability may cause features to perform abnormally.

CVE-2024-54097 [HIGH] CWE-15 CVE-2024-54097: Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability ma Security vulnerability in the HiView module Impact: Successful exploitation of this vulnerability may affect feature implementation and integrity.

CVE-2024-54098 [HIGH] CWE-840 CVE-2024-54098: Service logic error vulnerability in the system service module Impact: Successful exploitation of th Service logic error vulnerability in the system service module Impact: Successful exploitation of this vulnerability may affect service integrity.

CVE-2024-54101 [MEDIUM] CWE-20 CVE-2024-54101: Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation of Denial of service (DoS) vulnerability in the installation module Impact: Successful exploitation of this vulnerability will affect availability.

CVE-2024-54096 [MEDIUM] CWE-284 CVE-2024-54096: Vulnerability of improper access control in the MTP module Impact: Successful exploitation of this v Vulnerability of improper access control in the MTP module Impact: Successful exploitation of this vulnerability may affect integrity and accuracy.

CVE-2024-51530 [MEDIUM] CWE-20 CVE-2024-51530: LaunchAnywhere vulnerability in the account module Impact: Successful exploitation of this vulnerabi LaunchAnywhere vulnerability in the account module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-51528 [MEDIUM] CWE-532 CVE-2024-51528: Vulnerability of improper log printing in the Super Home Screen module Impact: Successful exploitati Vulnerability of improper log printing in the Super Home Screen module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-51529 [MEDIUM] CWE-20 CVE-2024-51529: Data verification vulnerability in the battery module Impact: Successful exploitation of this vulne Data verification vulnerability in the battery module Impact: Successful exploitation of this vulnerability may affect function stability.

CVE-2024-51527 [MEDIUM] CWE-264 CVE-2024-51527: Permission control vulnerability in the Gallery app Impact: Successful exploitation of this vulnerab Permission control vulnerability in the Gallery app Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-51510 [MEDIUM] CWE-787 CVE-2024-51510: Out-of-bounds access vulnerability in the logo module Impact: Successful exploitation of this vulner Out-of-bounds access vulnerability in the logo module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-9136 [HIGH] CWE-863 CVE-2024-9136: Access permission verification vulnerability in the App Multiplier module Impact: Successful exploit Access permission verification vulnerability in the App Multiplier module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-47294 [HIGH] CWE-16 CVE-2024-47294: Access permission verification vulnerability in the input method framework module Impact: Successful Access permission verification vulnerability in the input method framework module Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2024-47293 [HIGH] CWE-130 CVE-2024-47293: Out-of-bounds write vulnerability in the HAL-WIFI module Impact: Successful exploitation of this vul Out-of-bounds write vulnerability in the HAL-WIFI module Impact: Successful exploitation of this vulnerability may affect availability.

CVE-2024-47292 [MEDIUM] CWE-22 CVE-2024-47292: Path traversal vulnerability in the Bluetooth module Impact: Successful exploitation of this vulnera Path traversal vulnerability in the Bluetooth module Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2024-47291 [MEDIUM] CWE-16 CVE-2024-47291: Permission vulnerability in the ActivityManagerService (AMS) module Impact: Successful exploitation Permission vulnerability in the ActivityManagerService (AMS) module Impact: Successful exploitation of this vulnerability may affect availability.