Skip to main content

Honor 10 Lite Firmware

3 CVEs product

Monthly

CVE-2020-9069 MEDIUM This Month

There is an information leakage vulnerability in some Huawei products. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Anne Al00 Firmware Berkeley L09 Firmware Cd16 10 Firmware +15
NVD
CVSS 3.1
6.5
EPSS
0.3%
CVE-2019-5292 LOW Monitor

Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions before 9.1.0.217(C00E215R3P1), the versions before 9.1.0.205(C00E97R1P9), the versions before 9.1.0.205(C00E97R2P2) have an. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Honor 10 Lite Firmware Honor 8A Firmware Huawei Y6 Firmware
NVD
CVSS 3.1
3.3
EPSS
0.2%
CVE-2019-9506 HIGH This Week

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Code Injection Android Iphone Os Mac Os X Tvos +143
NVD
CVSS 3.1
8.1
EPSS
2.7%
EPSS 0% CVSS 6.5
MEDIUM This Month

There is an information leakage vulnerability in some Huawei products. Rated medium severity (CVSS 6.5), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Huawei Information Disclosure Anne Al00 Firmware +17
NVD
EPSS 0% CVSS 3.3
LOW Monitor

Honor 10 Lite, Honor 8A, Huawei Y6 mobile phones with the versions before 9.1.0.217(C00E215R3P1), the versions before 9.1.0.205(C00E97R1P9), the versions before 9.1.0.205(C00E97R2P2) have an. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Huawei Information Disclosure Honor 10 Lite Firmware +2
NVD
EPSS 3% CVSS 8.1
HIGH This Week

The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. Rated high severity (CVSS 8.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Code Injection Android Iphone Os +145
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy