CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-9135

The PackageInstaller module in Huawei P7-L10 smartphones before V100R001C00B136 allows remote attackers to spoof the origin website and bypass the website whitelist protection mechanism via a crafted package.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.7%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-397472.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/99283
http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-397472.htm
https://exchange.xforce.ibmcloud.com/vulnerabilities/99283

Products affected by CVE-2014-9135

Huawei » P7-L10 Firmware » Version: v100r001c00b135

cpe:2.3:a:huawei:p7-l10_firmware:v100r001c00b135
Huawei » P7-L10 » Version: N/A

cpe:2.3:h:huawei:p7-l10:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-9135

Products

Pricing

Contact Us