RSS   Vulnerabilities for 'Hisuite'   RSS

2020-07-06
 
CVE-2020-9100

CWE-426
 

 
Earlier than HiSuite 10.1.0.500 have a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing.

 
2019-11-29
 
CVE-2019-5263

CWE-200
 

 
HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305(MAC) and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtained by brute forcing the password for encrypting the backup.

 
2019-06-13
 
CVE-2019-5245

CWE-426
 

 
HiSuite 9.1.0.300 versions and earlier contains a DLL hijacking vulnerability. This vulnerability exists due to some DLL file is loaded by HiSuite improperly. And it allows an attacker to load this DLL file of the attacker's choosing that could execute arbitrary code.

 
2017-04-02
 
CVE-2016-8274

 

 
Huawei PC client software HiSuite 4.0.5.300_OVE has a dynamic link library (DLL) hijack vulnerability; an attacker can make the system load malicious DLL files to execute arbitrary code.

 
 
CVE-2016-8273

 

 
Huawei PC client software HiSuite 4.0.5.300_OVE uses insecure HTTP for upgrade software package download and does not check the integrity of the software package before installing; an attacker can launch an MITM attack to interrupt or replace the downloaded software package and further compromise the PC.

 
 
CVE-2016-8272

 

 
Huawei PC client software HiSuite 4.0.5.300_OVE has an information leak vulnerability; an attacker who can log in to the system can copy out the user's proxy password, causing information leaks.

 
2016-07-13
 
CVE-2016-5821

CWE-264
 

 
Huawei HiSuite before 4.0.4.204_ove (Out of China) and before 4.0.4.301 (China) use a weak ACL (FILE_WRITE_DATA for BUILTIN\Users) for the HiSuite service directory, which allows local users to gain SYSTEM privileges via a Trojan horse (1) SspiCli.dll or (2) USERENV.dll file or possibly other unspecified DLL files.

 
2016-06-30
 
CVE-2016-4086

 

 
Huawei HiSuite (In China) before 4.0.4.301 and (Out of China) before 4.0.4.204_ove allows remote attackers to install arbitrary apps on a connected phone via unspecified vectors.

 

 >>> Vendor: Huawei 665 Products
S8500
Versatile routing platform
D100
D100 router
Mt882 v100t002b020 arg-t
Mt882 modem firmware
Mt882 modem
E585
E585u-82
ACU
ATN
Cx200
Cx300
Cx600
Ma5200g
ME60
NE20
Ne20e-x6
NE40
Ne40e
Ne40e/80e
Ne5000e
NE80
Ne80e
S2300
S2700
S3300
S3300hi
S3700
S5300
S5300hi
S5306
S5700
S6300
S6700
S7700
S9300
Wlan ac 6605
Ar 19/29/49
Ar g3
E200 usg2200
E200 usg5100
E200e-b
E200e-c
E200e-usg2100
E200e-x1
E200e-x2
E200x3
E200x5
E200x7
Eudemon1000
Eudemon1000e-u
Eudemon1000e-x
Eudemon100e
Eudemon200
Eudemon300
Eudemon500
Eudemon8000e-x
Eudemon 8080e
Eudemon 8160e
Eudemon usg5300
Eudemon usg5500
Eudemon usg9300
Eudemon usg9500
H3c ar(oem in)
Nip100
Nip1000
Nip200
Nip2100
Nip2200
Nip5100
Svn2000
Svn3000
Svn5000
Svn5300
UTPS
Ar 18-1x
Ar 18-2x
Ar 18-3x
Ar 28/46
S2000
S3000
S3500
S3900
S5100
S5600
S7800
Quidway service process unit board s7700
Quidway service process unit board s9300
Quidway service process unit board s9700
Vp 9610
Vp 9620
Ar 1200
Ar 150
Ar 200
Ar 2200
Ar 3200
Access router
Seco versatile security manager
Mt882
See all Products for Vendor Huawei


Copyright 2024, cxsecurity.com

 

Back to Top