Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Tecno — Vulnerabilities & Security Advisories 20

Browse all 20 CVE security advisories affecting Tecno. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Tecno operates primarily in the consumer electronics sector, manufacturing smartphones, tablets, and smart home devices for emerging markets. Its software ecosystem, particularly the HiOS interface and associated system services, has historically exhibited vulnerabilities including remote code execution, cross-site scripting, and local privilege escalation. These flaws often stem from insufficient input validation in system daemons or insecure default configurations within pre-installed applications. While no single catastrophic breach has defined the brand’s public security history, the cumulative record of twenty Common Vulnerabilities and Exposures indicates a pattern of delayed patching and inconsistent security hygiene across device generations. Attackers frequently exploit these weaknesses to gain unauthorized access to user data or install persistent malware. The company’s approach to vulnerability management remains reactive, with significant delays between disclosure and official firmware updates, leaving a large installed base exposed to known exploits for extended periods.

Top products by Tecno: com.transsion.carlcare 4G Portable WiFi TR118 com.afmobi.boomplayer com.transsion.aivoiceassistant com.transsion.kolun.aiservice com.transsion.videocallenhancer com.android.server.telecom com.transsion.phoenix com.transsion.applock com.transsnet.store tech.palm.id com.transsion.audiosmartconnect Tecno Pova6 Pro 5G
CVE IDTitleCVSSSeverityPublished
CVE-2025-14817 Factory Mode App Exists Privilege Escalation Issue Allowing Third-Party Apps to Open ADB — Tecno Pova6 Pro 5GCWE-862 9.1AICriticalAI2025-12-17
CVE-2025-9056 Tecno AudioLink 安全漏洞 — com.transsion.audiosmartconnectCWE-863 7.1AIHighAI2025-12-10
CVE-2025-7703 TECNO tech.palm.id 安全漏洞 — tech.palm.idCWE-287 7.5AIHighAI2025-07-16
CVE-2025-6172 TECNO com.afmobi.boomplayer 安全漏洞 — com.afmobi.boomplayerCWE-287 8.8AIHighAI2025-06-16
CVE-2025-4737 TECNO com.transsion.aivoiceassistant 安全漏洞 — com.transsion.aivoiceassistantCWE-312 7.5AIHighAI2025-05-15
CVE-2025-3698 TECNO com.transsion.carlcare 安全漏洞 — com.transsion.carlcareCWE-749 6.5AIMediumAI2025-04-16
CVE-2025-2190 TECNO com.transsnet.store 安全漏洞 — com.transsnet.storeCWE-297 8.1 -2025-03-11
CVE-2025-1298 TECNO com.transsion.carlcare 安全漏洞 — com.transsion.carlcareCWE-290 9.8 -2025-02-14
CVE-2025-0590 TECNO com.transsion.carlcare 安全漏洞 — com.transsion.carlcareCWE-732 6.2 -2025-01-20
CVE-2024-12603 TECNO com.transsion.applock 安全漏洞 — com.transsion.applockCWE-602 9.8 -2024-12-13
CVE-2024-11206 Phoenix com.transsion.phoenix 安全漏洞 — com.transsion.phoenixCWE-359 7.5 -2024-11-14
CVE-2024-10195 Tecno 4G Portable WiFi TR118 SMS Check goform_get_cmd_process sql injection — 4G Portable WiFi TR118CWE-89 4.7 Medium2024-10-20
CVE-2024-10018 TECNO com.transsion.aivoiceassistant 安全漏洞 — com.transsion.aivoiceassistantCWE-732 7.5 -2024-10-16
CVE-2024-8039 TECNO com.afmobi.boomplayer 安全漏洞 — com.afmobi.boomplayerCWE-732 9.8 -2024-09-14
CVE-2024-7697 Logical vulnerability in com.transsion.carlcare — com.transsion.carlcareCWE-359 7.5AIHighAI2024-08-12
CVE-2024-6780 Improper permission control in com.android.server.telecom — com.android.server.telecomCWE-732 6.2AIMediumAI2024-07-16
CVE-2024-5163 Improper permission settings in com.transsion.carlcare — com.transsion.carlcareCWE-732 9.1AICriticalAI2024-06-17
CVE-2024-4988 Improper permission control in com.transsion.videocallenhancer — com.transsion.videocallenhancerCWE-269 7.5AIHighAI2024-05-21
CVE-2024-3701 Improper Authentication in com.transsion.kolun.aiservice — com.transsion.kolun.aiserviceCWE-306 9.8AICriticalAI2024-04-15
CVE-2023-6304 Tecno 4G Portable WiFi TR118 Ping Tool goform_get_cmd_process os command injection — 4G Portable WiFi TR118CWE-78 7.2 High2023-11-27

This page lists every published CVE security advisory associated with Tecno. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.