Skip to main content

Vmall

4 CVEs product

Monthly

CVE-2023-23437 MEDIUM This Month

Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Vmall
NVD
CVSS 3.1
5.5
EPSS
0.2%
CVE-2017-8153 HIGH This Week

Huawei VMall (for Android) with the versions before 1.5.8.5 have a privilege elevation vulnerability due to improper design. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Google Huawei Information Disclosure Vmall
NVD
CVSS 3.0
7.1
EPSS
0.1%
CVE-2017-2739 LOW Monitor

The upgrade package of Huawei Vmall APP Earlier than HwVmall 1.5.3.0 versions is transferred through HTTP. Rated low severity (CVSS 3.1), this vulnerability is no authentication required. No vendor patch available.

Huawei Information Disclosure Vmall
NVD
CVSS 3.0
3.1
EPSS
0.0%
CVE-2017-2694 LOW Monitor

The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Vmall
NVD
CVSS 3.0
3.3
EPSS
0.1%
EPSS 0% CVSS 5.5
MEDIUM This Month

Some Honor products are affected by information leak vulnerability, successful exploitation could cause the information leak. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Vmall
NVD
EPSS 0% CVSS 7.1
HIGH This Week

Huawei VMall (for Android) with the versions before 1.5.8.5 have a privilege elevation vulnerability due to improper design. Rated high severity (CVSS 7.1), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Google Huawei Information Disclosure +1
NVD
EPSS 0% CVSS 3.1
LOW Monitor

The upgrade package of Huawei Vmall APP Earlier than HwVmall 1.5.3.0 versions is transferred through HTTP. Rated low severity (CVSS 3.1), this vulnerability is no authentication required. No vendor patch available.

Huawei Information Disclosure Vmall
NVD
EPSS 0% CVSS 3.3
LOW Monitor

The AlarmService component in HwVmall with software earlier than 1.5.2.0 versions has no control over calling permissions, allowing any third party to call. Rated low severity (CVSS 3.3), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Vmall
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy