Huawei: >> Y6 Pro Firmware >> 9.1.0.248(c636e5r3p1) Security Vulnerabilities
Huawei Enjoy 5s and Y6 Pro smartphones with software the versions before TAG-AL00C92B170; the versions before TIT-L01C576B121 have an information leak vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious application on the smart phone and the application can read some sensitive information in kernel memory which may cause sensitive information leak.
CVSS Score
5.5
EPSS Score
0.001
Published
2018-03-05
TIT-AL00 smartphones with software versions earlier before TIT-AL00C583B214 have a exposed system interface vulnerability. The software provides a system interface for interaction with external applications, but calling the interface is not properly restricted. An attacker could trick the user into installing a malicious application to call the interface and modify the system properties.
CVSS Score
7.1
EPSS Score
0.001
Published
2017-11-22