cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2017-17171,https://securityvulnerability.io/vulnerability/CVE-2017-17171,,"Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart.",McAfee,Huawei Mate 8; Huawei P9; Huawei P9 Plus,4.2,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2018-06-01T14:00:00.000Z,0
CVE-2017-17313,https://securityvulnerability.io/vulnerability/CVE-2017-17313,,"The inputhub driver of HUAWEI P9 Lite mobile phones with Versions earlier than VNS-L21C02B341, Versions earlier than VNS-L21C22B380, Versions earlier than VNS-L31C02B341, Versions earlier than VNS-L31C440B390, Versions earlier than VNS-L31C636B396 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP and the APP may sends specific data to the inputhub driver to exploit this vulnerability, successful exploit could cause the system reboot.",McAfee,Huawei P9 Lite,5.5,MEDIUM,0.0006900000153109431,false,,false,false,false,,,false,false,,2018-04-19T14:29:00.000Z,0
CVE-2017-17319,https://securityvulnerability.io/vulnerability/CVE-2017-17319,,"Huawei P9 smartphones with the versions before EVA-AL10C00B399SP02 have an information disclosure vulnerability. The software does not properly protect certain resource which can be accessed by multithreading. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could result in kernel information disclosure.",McAfee,P9,5.5,MEDIUM,0.0007200000109151006,false,,false,false,false,,,false,false,,2018-03-20T15:00:00.000Z,0
CVE-2016-8783,https://securityvulnerability.io/vulnerability/CVE-2016-8783,,"Touchscreen drive in Huawei H60 (Honor 6) Versions earlier than H60-L02_6.12.16 and P9 Plus Versions earlier than VIE-AL10BC00B356 has a stack overflow vulnerabilities. An attacker tricks a user into installing a malicious application on the smart phone, and send given parameter to touchscreen drive to crash the system or escalate privilege.",McAfee,"H60 (honor 6), P9 Plus",7.8,HIGH,0.001069999998435378,false,,false,false,false,,,false,false,,2018-03-09T21:00:00.000Z,0
CVE-2017-2734,https://securityvulnerability.io/vulnerability/CVE-2017-2734,,"P9 Plus smartphones with software versions earlier before VIE-AL10BC00B386 have a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a large number of memory allocation and the smart phone will be crash for memory exhaustion.",McAfee,P9 Plus,5.5,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8140,https://securityvulnerability.io/vulnerability/CVE-2017-8140,,"The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution.",McAfee,P9 Plus,7.8,HIGH,0.0007999999797903001,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8143,https://securityvulnerability.io/vulnerability/CVE-2017-8143,,Wi-Fi driver of Honor 5C and P9 Lite Huawei smart phones with software versions earlier than NEM-L21C432B351 and versions earlier than VNS-L21C10B381 has a DoS vulnerability. An attacker may trick a user into installing a malicious application and the application can access invalid address of driver to crash the system.,McAfee,"Honor 5c, P9 Lite",5.5,MEDIUM,0.0006699999794363976,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8148,https://securityvulnerability.io/vulnerability/CVE-2017-8148,,"Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the race condition cause null pointer accessing during the application access shared resource, which make the system reboot.",McAfee,P9,4.7,MEDIUM,0.0006200000061653554,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8215,https://securityvulnerability.io/vulnerability/CVE-2017-8215,,"Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B191, versions earlier than Duke-TL30C01B191, versions earlier than Picasso-AL00C00B162, versions earlier than Picasso-TL00C01B162 , versions earlier than Barca-AL00C00B162, versions earlier than Barca-TL00C00B162, versions earlier than EVA-AL10C00B396SP03, versions earlier than EVA-CL00C92B396, versions earlier than EVA-DL00C17B396, versions earlier than EVA-TL00C01B396 , versions earlier than Vicky-AL00AC00B172, versions earlier than Toronto-AL00AC00B191, versions earlier than Toronto-TL10C01B191 have a permission control vulnerability. An attacker with the system privilege of a mobile can exploit this vulnerability to bypass the unlock code verification and unlock the mobile phone bootloader.",McAfee,"Honor 8,honor V8,honor 9,honor V9,nova 2,nova 2 Plus,p9,p10 Plus,toronto",6.2,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-2691,https://securityvulnerability.io/vulnerability/CVE-2017-2691,,"Huawei P9 versions earlier before EVA-AL10C00B373, versions earlier before EVA-CL00C92B373, versions earlier before EVA-DL00C17B373, versions earlier before EVA-TL00C01B373 have a lock-screen bypass vulnerability. An unauthenticated attacker could force the phone to the fastboot mode and delete the user's password file during the reboot process, then login the phone without screen lock password after reboot.",McAfee,Huawei P9,6.8,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-2711,https://securityvulnerability.io/vulnerability/CVE-2017-2711,,"P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system.",McAfee,P9 Plus,5.5,MEDIUM,0.0006699999794363976,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-2713,https://securityvulnerability.io/vulnerability/CVE-2017-2713,,"HUAWEI P9 smartphones with software versions earlier before EVA-L09C432B383, versions earlier before EVA-L09C636B380, versions earlier before VIE-L09C432B370, versions earlier before VIE-L29C636B370 have an insufficient input validation vulnerability. An attacker could exploit this vulnerability to tamper with air interface signaling messages and obtain some communication information.",McAfee,Huawei P9,5.4,MEDIUM,0.0006799999973736703,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-2727,https://securityvulnerability.io/vulnerability/CVE-2017-2727,,"Huawei P9 smart phones with software versions earlier before EVA-AL00C00B365, versions earlier before EVA-AL10C00B365,Versions earlier before EVA-CL00C92B365, versions earlier before EVA-DL00C17B365, versions earlier before EVA-TL00C01B365 have a privilege escalation vulnerability. An unauthenticated attacker can bypass phone activation to user management page of the phone and create a new user. Successful exploit could allow the attacker operate part function of the phone.",McAfee,Huawei P9,4.3,MEDIUM,0.0007200000109151006,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-8214,https://securityvulnerability.io/vulnerability/CVE-2017-8214,,"Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B191, versions earlier than Duke-TL30C01B191, versions earlier than Picasso-AL00C00B162, versions earlier than Picasso-TL00C01B162 , versions earlier than Barca-AL00C00B162, versions earlier than Barca-TL00C00B162, versions earlier than EVA-AL10C00B396SP03, versions earlier than EVA-CL00C92B396, versions earlier than EVA-DL00C17B396, versions earlier than EVA-TL00C01B396 , versions earlier than Vicky-AL00AC00B172, versions earlier than Toronto-AL00AC00B191, versions earlier than Toronto-TL10C01B191 have an unlock code verification bypassing vulnerability. An attacker with the root privilege of a mobile can exploit this vulnerability to bypass the unlock code verification and unlock the mobile phone bootloader.",McAfee,"Honor 8,honor V8,honor 9,honor V9,nova 2,nova 2 Plus,p9,p10 Plus,toronto",6.2,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-2703,https://securityvulnerability.io/vulnerability/CVE-2017-2703,,"Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00BC00B156,Versions earlier before MHA-DL00BC00B156,Versions earlier before MHA-TL00BC00B156,Versions earlier before EVA-AL10C00B373,Versions earlier before EVA-CL10C00B373,Versions earlier before EVA-DL10C00B373,Versions earlier before EVA-TL10C00B373 can be bypass. An attacker can bypass the Phone Finder by special steps and enter the System Setting.",McAfee,"Mate 9, P9",6.8,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-2705,https://securityvulnerability.io/vulnerability/CVE-2017-2705,,"Huawei P9 smartphones with software versions earlier before EVA-AL10C00B365, versions earlier before EVA-AL00C00B365, versions earlier before EVA-CL00C92B365, versions earlier before EVA-DL00C17B365, versions earlier before EVA-TL00C01B365 have a phone activation bypass vulnerability. Successful exploit could allow an unauthenticated attacker to bypass phone activation to settings page of the phone.",McAfee,Huawei P9,2.4,LOW,0.0005499999970197678,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0
CVE-2017-2731,https://securityvulnerability.io/vulnerability/CVE-2017-2731,,"The vibrator service in P9 Plus smart phones with software versions earlier before VIE-AL10C00B386 has DoS vulnerability. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone vibrator service interface to crash the system.",McAfee,P9 Plus,5.5,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2017-11-22T19:29:00.000Z,0