Huawei Honor 8A Firmware vulnerabilities
3 known vulnerabilities affecting huawei/honor_8a_firmware.
Total CVEs
3
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH2LOW1
Vulnerabilities
Page 1 of 1
CVE-2020-0069HIGHCVSS 7.8KEVfixed in 9.1.0.291\(c185e3r4p1\)fixed in 9.1.0.291\(c432e5r2p1\)+2 more2020-03-10
CVE-2020-0069 [HIGH] CWE-787 CVE-2020-0069: In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write
In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kern
nvd
CVE-2020-0022HIGHCVSS 8.8fixed in 9.1.0.291\(c185e3r4p1\)2020-02-13
CVE-2020-0022 [HIGH] CWE-682 CVE-2020-0022: In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an
In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9 Android-10Andr
nvd
CVE-2019-5292LOWCVSS 3.3fixed in 9.1.0.205\(c00e97r1p9\)2019-11-13
CVE-2019-5292 [LOW] CVE-2019-5292: Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions before 9.1.0.217(C00E215R3P1), th
Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions before 9.1.0.217(C00E215R3P1), the versions before 9.1.0.205(C00E97R1P9), the versions before 9.1.0.205(C00E97R2P2) have an information leak vulnerability. Due to improper function error records of some module, an attacker with the access permission may exploit the vulnerability to obtain some in
nvd