Huawei Security Vulnerabilities (CVEs)

A permission control vulnerability in the file management module could allow unauthorized access to sensitive files. This affects Huawei products with...

An authentication bypass vulnerability in the Gallery app allows unauthorized access to protected content. This affects Huawei device users who have t...

This vulnerability involves improper security checks in a call module, allowing attackers to bypass intended restrictions. Successful exploitation cou...

This CVE describes a use-after-free vulnerability in the USB driver module that could allow an attacker to execute arbitrary code or cause a system cr...

This CVE describes a permission control vulnerability in Huawei's file management module that could allow unauthorized access to sensitive files. Succ...

A configuration defect in the file management module could allow unauthorized access to application data. This vulnerability affects Huawei laptop use...

This CVE describes an out-of-bounds read vulnerability in a Huawei driver module that could allow attackers to access invalid memory. Successful explo...

A permission control vulnerability in the Wi-Fi module could allow unauthorized access to sensitive service information. This affects Huawei devices w...

This CVE describes a denial-of-service vulnerability in Huawei's video-related system service module. Attackers can exploit this vulnerability to cras...

A permission control vulnerability in Huawei's Notepad module could allow unauthorized access to sensitive information. This affects Huawei device use...

This CVE describes a denial-of-service vulnerability in Huawei's office service. Successful exploitation could cause the service to become unresponsiv...

A permission control vulnerability in the print module allows unauthorized access to sensitive information. This affects systems running vulnerable Hu...

This CVE describes a use-after-free vulnerability in the screen recording framework module that could allow attackers to crash affected systems, poten...

A use-after-free vulnerability in the screen recording framework module could allow attackers to crash affected systems, affecting availability. This ...

A permission control vulnerability in the startup recovery module allows attackers to bypass intended access restrictions. This affects availability a...

A permission control vulnerability in Huawei's distributed component allows unauthorized access to sensitive information. This affects Huawei products...

A permission control vulnerability in Huawei's App Lock module could allow attackers to bypass application locking mechanisms. This affects availabili...

This vulnerability involves improper exception handling in the print module of Huawei products, which could allow attackers to cause denial of service...

A buffer overflow vulnerability in Huawei device management modules allows attackers to crash systems or potentially execute arbitrary code by sending...

A buffer overflow vulnerability in Huawei device management modules could allow attackers to crash affected systems, causing denial of service. This a...

A buffer overflow vulnerability in Huawei's development framework module could allow attackers to crash affected systems, potentially causing denial o...

A buffer overflow vulnerability in Huawei sensor service could allow attackers to crash the service or potentially execute arbitrary code. This affect...

A stack-based buffer overflow vulnerability (CWE-121) in Huawei's package management module allows attackers to cause denial of service by sending spe...

A Use After Free vulnerability in Huawei office service allows attackers to access sensitive information after memory has been freed. This affects Hua...

This CVE describes a permission control vulnerability in Huawei's media module that could allow unauthorized access to sensitive media content. Succes...

A permission control vulnerability in Huawei Wi-Fi modules could allow unauthorized access to sensitive information. This affects Huawei consumer devi...

A permission control vulnerability in Huawei network modules allows unauthorized access to sensitive information. This affects Huawei devices and serv...

This CVE describes an identity authentication bypass vulnerability in Huawei's Gallery app that allows unauthorized access to protected content. Succe...

This CVE describes a permission verification bypass vulnerability in the Camera app that could allow unauthorized access to camera functionality. The ...

A permission control vulnerability in Huawei Gallery module allows unauthorized access to protected content. This affects Huawei smartphone users who ...

EnzoH contains an OS command injection vulnerability that allows attackers to execute arbitrary commands on affected systems. This affects organizatio...

EnzoH contains an OS command injection vulnerability that allows attackers to execute arbitrary commands on affected systems. This affects systems run...

EnzoH contains an OS command injection vulnerability (CWE-200) that could allow authenticated attackers to execute arbitrary commands on affected syst...

This CVE describes a type confusion vulnerability in Huawei's location service where incompatible data types are used to access resources. Exploitatio...

This vulnerability involves improper array index verification in an audio codec module, allowing attackers to potentially disrupt audio decoding funct...

A race condition vulnerability exists in the kernel hufs module that could allow local attackers to potentially access sensitive information. This aff...

This CVE describes an out-of-bounds array access vulnerability in Huawei's location service module due to insufficient data verification. Successful e...

This CVE describes an inadequate packet length check vulnerability in BLE (Bluetooth Low Energy) modules. Attackers could send specially crafted packe...

An out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack could allow attackers to cause denial of service conditions. Thi...

An out-of-bounds read vulnerability in the SSAP module of the NearLink protocol stack could allow attackers to cause denial of service conditions. Thi...

A buffer overflow vulnerability in the kernel gyroscope module allows attackers to crash or destabilize affected systems by sending malformed data. Th...

This CVE describes an out-of-bounds array access vulnerability in the kernel ambient light module due to insufficient data verification. Successful ex...

This CVE describes an out-of-bounds array access vulnerability in the kernel ambient light module due to insufficient data verification. Successful ex...

CVE-2025-54640 is a ParcelMismatch vulnerability in attribute deserialization that allows attackers to manipulate data structures during deserializati...

A buffer overflow vulnerability in the kernel acceleration module allows attackers to cause denial of service by sending specially crafted data. This ...

CVE-2025-54639 is a deserialization vulnerability in Huawei devices that allows attackers to manipulate attribute data during deserialization. Success...

This CVE describes a buffer overflow vulnerability in the kernel drop detection module caused by insufficient input validation. Successful exploitatio...

This CVE describes an out-of-bounds array access vulnerability in the kernel ambient light module due to insufficient data verification. Successful ex...

This vulnerability involves inconsistent read/write serialization in the ad module, which could allow an attacker to disrupt the availability of the a...