|
196821
|
9.8 |
CRITICAL
Network
|
huawei
|
magic_ui
emui
|
There is an Integer Overflow Vulnerability in Huawei Smartphone. Successful exploitation of these vulnerabilities may escalate the permission to that of the root user.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2021-22323
|
2024-11-21 14:49 |
2021-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196822
|
7.5 |
HIGH
Network
|
huawei
|
magic_ui
emui
|
There is a Security Features Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2021-22372
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196823
|
7.5 |
HIGH
Network
|
huawei
|
magic_ui
emui
|
There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may affect service confidentiality.
|
NVD-CWE-noinfo
|
CVE-2021-22370
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196824
|
7.1 |
HIGH
Local
|
huawei
|
harmonyos
|
A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability.
|
CWE-269
Improper Privilege Management
|
CVE-2021-22326
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196825
|
5.3 |
MEDIUM
Network
|
huawei
|
ecns280_firmware
|
There is an XXE injection vulnerability in eCNS280 V100R005C00 and V100R005C10. A module does not perform the strict operation to the input XML message. Attacker can send specific message to exploit …
|
CWE-611
XXE
|
CVE-2021-22338
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196826
|
4.9 |
MEDIUM
Network
|
huawei
|
ips_module_firmware
ngfw_module_firmware
nip6300_firmware
nip6600_firmware
secospace_usg6300_firmware
secospace_usg6500_firmware
secospace_usg6600_firmware
|
There is a memory leak vulnerability in Huawei products. A resource management weakness exists in a module. Attackers with high privilege can exploit this vulnerability by performing some operations.…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2021-22341
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196827
|
4.9 |
MEDIUM
Network
|
huawei
|
s12700_firmware
s1700_firmware
s2700_firmware
s5700_firmware
s6700_firmware
s7700_firmware
s9700_firmware
|
There has a license management vulnerability in some Huawei products. An attacker with high privilege needs to perform specific operations to exploit the vulnerability on the affected device. Due to …
|
NVD-CWE-noinfo
|
CVE-2021-22329
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196828
|
7.8 |
HIGH
Local
|
poweriso
|
poweriso
|
A memory corruption vulnerability exists in the DMG File Format Handler functionality of PowerISO 7.9. A specially crafted DMG file can lead to an out-of-bounds write. An attacker can provide a malic…
|
CWE-787
Out-of-bounds Write
|
CVE-2021-21871
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196829
|
4.1 |
MEDIUM
Local
|
huawei
|
manageone
smc2.0
|
There is a multiple threads race condition vulnerability in Huawei product. A race condition exists for concurrent I/O read by multiple threads. An attacker with the root permission can exploit this …
|
CWE-362
Race Condition
|
CVE-2021-22340
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
196830
|
7.5 |
HIGH
Network
|
vmware
oracle
|
spring_security
communications_cloud_native_core_policy
|
Spring Security versions 5.5.x prior to 5.5.1, 5.4.x prior to 5.4.7, 5.3.x prior to 5.3.10 and 5.2.x prior to 5.2.11 are susceptible to a Denial-of-Service (DoS) attack via the initiation of the Auth…
|
CWE-863
Incorrect Authorization
|
CVE-2021-22119
|
2024-11-21 14:49 |
2021-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
