Summary
Detail | |||
---|---|---|---|
Vendor | Huawei | First view | 2019-06-06 |
Product | Pcmanager | Last view | 2022-02-25 |
Version | Type | ||
Update | |||
Edition | |||
Language | |||
Sofware Edition | |||
Target Software | |||
Target Hardware | |||
Other |
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
Related : CVE
Date | Alert | Description | |
---|---|---|---|
9.8 | 2022-02-25 | CVE-2021-40046 | PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could allow the attacker to access certain resource beyond its privilege. |
6.5 | 2021-10-27 | CVE-2021-37124 | There is a path traversal vulnerability in Huawei PC product. Because the product does not filter path with special characters,attackers can construct a file path with special characters to exploit this vulnerability. Successful exploitation could allow the attacker to transport a file to certain path.Affected product versions include:PC Smart Full Scene 11.1 versions PCManager 11.1.1.97. |
7.8 | 2020-04-30 | CVE-2020-1817 | Huawei PCManager with versions earlier than 10.0.1.36 has a privilege escalation vulnerability. Due to improper permission management of specific files, local attackers with low permissions can inject commands to exploit this vulnerability. Successful exploit may cause privilege escalation. |
6.7 | 2020-04-27 | CVE-2020-1845 | Huawei PCManager product with versions earlier than 10.0.5.53 have a local privilege escalation vulnerability. An authenticated, local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege. |
7.8 | 2020-02-28 | CVE-2020-1844 | PCManager with versions earlier than 10.0.5.51 have a privilege escalation vulnerability in Huawei PCManager products. An authenticated, local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege. |
7.8 | 2019-08-13 | CVE-2019-5223 | PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution. |
7.8 | 2019-06-06 | CVE-2019-5242 | There is a code execution vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50. The attacker can tricking a user to install and run a malicious application to exploit this vulnerability. Successful exploitation may cause the attacker to execute malicious code and read/write memory. |
7.8 | 2019-06-06 | CVE-2019-5241 | There is a privilege escalation vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50. The attacker can tricking a user to install and run a malicious application to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege. |
CWE : Common Weakness Enumeration
% | id | Name |
---|---|---|
50% (1) | CWE-287 | Improper Authentication |
50% (1) | CWE-22 | Improper Limitation of a Pathname to a Restricted Directory ('Path ... |
Snort® IPS/IDS
Date | Description |
---|---|
2019-05-02 | Huawei PCManager device driver privilege escalation attempt RuleID : 49631 - Type : OS-WINDOWS - Revision : 2 |
2019-05-02 | Huawei PCManager device driver privilege escalation attempt RuleID : 49630 - Type : OS-WINDOWS - Revision : 2 |
2019-05-02 | Huawei PCManager device driver privilege escalation attempt RuleID : 49629 - Type : OS-WINDOWS - Revision : 2 |
2019-05-02 | Huawei PCManager device driver privilege escalation attempt RuleID : 49628 - Type : OS-WINDOWS - Revision : 2 |