← Back

Dura Al00a Firmware

dura-al00a_firmware

Vendor: Huawei • 3 CVEs

CVEs (3)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-0069
2Google
Huawei
29Android
Berkeley L09 FirmwareColumbia Al10b Firmware+26 more
Oct 23, 2025
Mar 10, 2020
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privileg...Show more
In the ioctl handlers of the Mediatek Command Queue driver, there is a possible out of bounds write due to insufficient input sanitization and missing SELinux restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid ID: A-147882143References: M-ALPS04356754Show less
CVE-2019-2215
5Canonical
DebianGoogle+2 more
77A220 Firmware
A320 FirmwareA800 Firmware+74 more
Oct 24, 2025
Oct 11, 2019
N/A· v4
7.8 HIGH· v3
4.6 MEDIUM· v2
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installat...Show more
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095Show less
CVE-2019-9506
7Apple
CanonicalDebian+4 more
147Alp Al00b Firmware
AndroidAres Al00b Firmware+144 more
Nov 21, 2024
Aug 14, 2019
N/A· v4
8.1 HIGH· v3
4.8 MEDIUM· v2
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-...Show more
The Bluetooth BR/EDR specification up to and including version 5.1 permits sufficiently low encryption key length and does not prevent an attacker from influencing the key length negotiation. This allows practical brute-force attacks (aka "KNOB") that can decrypt traffic and inject arbitrary ciphertext without the victim noticing.Show less