cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2018-7989,https://securityvulnerability.io/vulnerability/CVE-2018-7989,,"Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful exploit could allow the attacker to use the application which is locked.",McAfee,Mate 10 Pro,4.6,MEDIUM,0.000590000010561198,false,,false,false,false,,,false,false,,2018-10-17T15:00:00.000Z,0
CVE-2018-7936,https://securityvulnerability.io/vulnerability/CVE-2018-7936,,"Mate 10 Pro Huawei smart phones with the versions before BLA-L29 8.0.0.148(C432) have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can connect the phone with PC and send special instructions to install third party desktop and disable the boot wizard. As a result, the FRP function is bypassed.",McAfee,Mate 10 Pro,4.6,MEDIUM,0.0006000000284984708,false,,false,false,false,,,false,false,,2018-09-04T16:00:00.000Z,0
CVE-2018-7934,https://securityvulnerability.io/vulnerability/CVE-2018-7934,,"Some Huawei mobile phone with the versions before BLA-L29 8.0.0.145(C432) have a denial of service (DoS) vulnerability because they do not adapt to specific screen gestures. An attacker may trick users into installing a malicious app. As a result, apps running on the frontend crash after the users make specific screen gestures.",McAfee,Mate 10 Pro,5.5,MEDIUM,0.0005600000149570405,false,,false,false,false,,,false,false,,2018-07-31T14:00:00.000Z,0
CVE-2018-7940,https://securityvulnerability.io/vulnerability/CVE-2018-7940,,Huawei smart phones Mate 10 and Mate 10 Pro with earlier versions than 8.0.0.129(SP2C00) and earlier versions than 8.0.0.129(SP2C01) have an authentication bypass vulnerability. An attacker with high privilege obtains the smart phone and bypass the activation function by some specific operations.,McAfee,"Huawei Mate 10, Huawei Mate 10 Pro",6.2,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2018-05-10T14:00:00.000Z,0
CVE-2017-15311,https://securityvulnerability.io/vulnerability/CVE-2017-15311,,"The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120(SP2C00), before BLA-AL00 8.0.0.120(SP2C00), before MHA-AL00B 8.0.0.334(C00), and before LON-AL00B 8.0.0.334(C00) have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker could exploit this vulnerability to perform a denial of service attack or remote code execution in baseband module.",McAfee,"Mate 10,Mate 10 Pro,Mate 9,Mate 9 Pro",8.8,HIGH,0.006279999855905771,false,,false,false,false,,,false,false,,2017-12-22T17:29:00.000Z,0