Monthly Archive: June 2021

There is an Information Disclosure Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause out-of-bounds read. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the kernel to restart. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

There is a Configuration Defect Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may allow attackers to hijack the device and forge UIs to induce users to execute malicious commands. Date published :...

There is a Credentials Management Errors Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may induce users to grant permissions on modifying items in the configuration table,causing system exceptions. Date published : 2021-06-30...

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause the device to crash and restart. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of insufficient input verification may cause the system to restart. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

There is a Memory Buffer Improper Operation Limit Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause code to execute. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

There is an Improper Permission Management Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may lead to the disclosure of user habits. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

There is an Input Verification Vulnerability in Huawei Smartphone. Successful exploitation of this vulnerability may cause out-of-bounds memory write. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability. Date published : 2021-06-30 https://device.harmonyos.com/cn/docs/security/update/security-bulletins-202107-0000001123874808

There is an Integer Overflow Vulnerability in Huawei Smartphone. Successful exploitation of these vulnerabilities may escalate the permission to that of the root user. Date published : 2021-06-30 https://consumer.huawei.com/en/support/bulletin/2021/5/

Jenkins requests-plugin Plugin 2.2.7 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Overall/Read permission to send test emails to an attacker-specified email address. Date published : 2021-06-30...

A cross-site request forgery (CSRF) vulnerability in Jenkins requests-plugin Plugin 2.2.12 and earlier allows attackers to create requests and/or have administrators apply pending requests. Date published : 2021-06-30 https://www.jenkins.io/security/advisory/2021-06-30/#SECURITY-2136%20%281%29 http://www.openwall.com/lists/oss-security/2021/06/30/1

A missing permission check in Jenkins requests-plugin Plugin 2.2.6 and earlier allows attackers with Overall/Read permission to view the list of pending requests. Date published : 2021-06-30 https://www.jenkins.io/security/advisory/2021-06-30/#SECURITY-1995 http://www.openwall.com/lists/oss-security/2021/06/30/1