RSS   Vulnerabilities for 'Magic ui'   RSS

2022-04-11
 
CVE-2021-40065

NVD-CWE-noinfo
 

 
The communication module has a service logic error vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.

 
 
CVE-2021-46742

CWE-287
 

 
The multi-window module has a vulnerability of unauthorized insertion and tampering of Settings.Secure data.Successful exploitation of this vulnerability may affect the availability.

 
 
CVE-2022-22253

CWE-354
 

 
The DFX module has a vulnerability of improper validation of integrity check values.Successful exploitation of this vulnerability may affect system stability.

 
 
CVE-2022-22254

CWE-863
 

 
A permission bypass vulnerability exists when the NFC CAs access the TEE.Successful exploitation of this vulnerability may affect data confidentiality.

 
 
CVE-2022-22256

NVD-CWE-noinfo
 

 
The DFX module has an access control vulnerability.Successful exploitation of this vulnerability may affect data confidentiality.

 
 
CVE-2022-22257

CWE-269
 

 
The customization framework has a vulnerability of improper permission control.Successful exploitation of this vulnerability may affect data integrity.

 
 
CVE-2022-22258

NVD-CWE-noinfo
 

 
The Wi-Fi module has an event notification vulnerability.Successful exploitation of this vulnerability may allow third-party applications to intercept event notifications and add information and result in elevation-of-privilege.

 
2022-03-10
 
CVE-2021-40047

CWE-401
 

 
There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity.

 
 
CVE-2021-40048

CWE-131
 

 
There is an incorrect buffer size calculation vulnerability in the video framework. Successful exploitation of this vulnerability will affect availability.

 
 
CVE-2021-40049

CWE-276
 

 
There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization.

 


Copyright 2022, cxsecurity.com

 

Back to Top