Huawei Y6 Pro Firmware vulnerabilities

CVE-2019-5252 [LOW] CWE-287 CVE-2019-5252: There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, There is an improper authentication vulnerability in Huawei smartphones (Y9, Honor 8X, Honor 9 Lite, Honor 9i, Y6 Pro). The applock does not perform a sufficient authentication in a rare condition. Successful exploit could allow the attacker to use the application locked by applock in an instant.

CVE-2017-17140 [MEDIUM] CWE-200 CVE-2017-17140: Huawei Enjoy 5s and Y6 Pro smartphones with software the versions before TAG-AL00C92B170; the versio Huawei Enjoy 5s and Y6 Pro smartphones with software the versions before TAG-AL00C92B170; the versions before TIT-L01C576B121 have an information leak vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious application on the smart phone and the application can read some sensitive information in k

CVE-2017-2735 [HIGH] CWE-749 CVE-2017-2735: TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system in TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user into installing a malicious application to call the interfac