Skip to main content

Hisuite

8 CVEs product

Monthly

CVE-2020-9100 HIGH This Week

Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Hisuite
NVD
CVSS 3.1
7.8
EPSS
0.4%
CVE-2019-5263 MEDIUM This Month

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305(MAC) and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Hisuite Hwbackup
NVD
CVSS 3.1
5.5
EPSS
0.3%
CVE-2019-5245 MEDIUM This Month

HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

RCE Hisuite
NVD
CVSS 3.0
5.3
EPSS
0.4%
CVE-2016-8274 HIGH This Week

Huawei PC client software HiSuite 4.0.5.300_OVE has a dynamic link library (DLL) hijack vulnerability; an attacker can make the system load malicious DLL files to execute arbitrary code. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Huawei Authentication Bypass Hisuite
NVD
CVSS 3.0
7.8
EPSS
0.0%
CVE-2016-8273 HIGH This Week

Huawei PC client software HiSuite 4.0.5.300_OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Hisuite
NVD
CVSS 3.0
7.8
EPSS
0.0%
CVE-2016-8272 MEDIUM This Month

Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user's proxy password, causing information leaks. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Hisuite
NVD
CVSS 3.0
5.3
EPSS
0.0%
CVE-2016-5821 HIGH POC This Week

Huawei HiSuite before 4.0.4.204_ove (Out of China) and before 4.0.4.301 (China) use a weak ACL (FILE_WRITE_DATA for BUILTIN\Users) for the HiSuite service directory, which allows local users to gain. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Huawei Hisuite
NVD
CVSS 3.0
7.8
EPSS
0.1%
CVE-2016-4086 MEDIUM This Month

Huawei HiSuite (In China) before 4.0.4.301 and (Out of China) before 4.0.4.204_ove allows remote attackers to install arbitrary apps on a connected phone via unspecified vectors. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Huawei Hisuite
NVD
CVSS 3.0
5.3
EPSS
0.1%
EPSS 0% CVSS 7.8
HIGH This Week

Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. Rated high severity (CVSS 7.8), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Hisuite
NVD
EPSS 0% CVSS 5.5
MEDIUM This Month

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305(MAC) and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Hisuite +1
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

RCE Hisuite
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Huawei PC client software HiSuite 4.0.5.300_OVE has a dynamic link library (DLL) hijack vulnerability; an attacker can make the system load malicious DLL files to execute arbitrary code. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Huawei Authentication Bypass +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Huawei PC client software HiSuite 4.0.5.300_OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Hisuite
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user's proxy password, causing information leaks. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Hisuite
NVD
EPSS 0% CVSS 7.8
HIGH POC This Week

Huawei HiSuite before 4.0.4.204_ove (Out of China) and before 4.0.4.301 (China) use a weak ACL (FILE_WRITE_DATA for BUILTIN\Users) for the HiSuite service directory, which allows local users to gain. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Huawei Hisuite
NVD
EPSS 0% CVSS 5.3
MEDIUM This Month

Huawei HiSuite (In China) before 4.0.4.301 and (Out of China) before 4.0.4.204_ove allows remote attackers to install arbitrary apps on a connected phone via unspecified vectors. Rated medium severity (CVSS 5.3), this vulnerability is no authentication required. No vendor patch available.

Information Disclosure Huawei Hisuite
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy