Huawei Pcmanager

PCManager versions 11.1.1.95 has a privilege escalation vulnerability

CVE-2021-40046 9.8 - Critical - February 25, 2022

PCManager versions 11.1.1.95 has a privilege escalation vulnerability. Successful exploit could allow the attacker to access certain resource beyond its privilege.

There is a path traversal vulnerability in Huawei PC product

CVE-2021-37124 6.5 - Medium - October 27, 2021

There is a path traversal vulnerability in Huawei PC product. Because the product does not filter path with special characters,attackers can construct a file path with special characters to exploit this vulnerability. Successful exploitation could allow the attacker to transport a file to certain path.Affected product versions include:PC Smart Full Scene 11.1 versions PCManager 11.1.1.97.

Directory traversal

Huawei PCManager with versions earlier than 10.0.1.36 has a privilege escalation vulnerability

CVE-2020-1817 7.8 - High - April 30, 2020

Huawei PCManager with versions earlier than 10.0.1.36 has a privilege escalation vulnerability. Due to improper permission management of specific files, local attackers with low permissions can inject commands to exploit this vulnerability. Successful exploit may cause privilege escalation.

Improper Privilege Management

Huawei PCManager product with versions earlier than 10.0.5.53 have a local privilege escalation vulnerability

CVE-2020-1845 6.7 - Medium - April 27, 2020

Huawei PCManager product with versions earlier than 10.0.5.53 have a local privilege escalation vulnerability. An authenticated, local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

Improper Privilege Management

PCManager with versions earlier than 10.0.5.51 have a privilege escalation vulnerability in Huawei PCManager products

CVE-2020-1844 7.8 - High - February 28, 2020

PCManager with versions earlier than 10.0.5.51 have a privilege escalation vulnerability in Huawei PCManager products. An authenticated, local attacker can perform specific operation to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

Improper Privilege Management

PCManager 9.1.3.1 has an improper authentication vulnerability

CVE-2019-5223 7.8 - High - August 13, 2019

PCManager 9.1.3.1 has an improper authentication vulnerability. The certain driver interface of the software does not perform a validation of user-mode data properly, successful exploit could result in malicious code execution.

authentification

There is a privilege escalation vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50

CVE-2019-5241 7.8 - High - June 06, 2019

There is a privilege escalation vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50. The attacker can tricking a user to install and run a malicious application to exploit this vulnerability. Successful exploitation may cause the attacker to obtain a higher privilege.

There is a code execution vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50

CVE-2019-5242 7.8 - High - June 06, 2019

There is a code execution vulnerability in Huawei PCManager versions earlier than PCManager 9.0.1.50. The attacker can tricking a user to install and run a malicious application to exploit this vulnerability. Successful exploitation may cause the attacker to execute malicious code and read/write memory.

Improper Input Validation