Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2017-17171

UNKNOWN
Published 2018-06-01T14:00:00
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2017-17171. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Huawei Technologies Co., Ltd.

HUAWEI Mate 8; HUAWEI P9; HUAWEI P9 Plus

Affected Versions:

HUAWEI Mate 8 Versions earlier than NXT-AL10C00B592 Versions earlier than NXT-CL00C92B592 Versions earlier than NXT-DL00C17B592 Versions earlier than NXT-L09AC636B220 Versions earlier than NXT-L09C185B582 Versions earlier than NXT-L09C432B581 Versions earlier than NXT-L09C605B585 Versions earlier than NXT-L29C10B580 Versions earlier than NXT-L29C185B582 Versions earlier than NXT-L29C636B589 Versions earlier than NXT-TL00C01B592 HUAWEI P9 Versions earlier than EVA-AL00C00B398 Versions earlier than EVA-AL10C00B398 Versions earlier than EVA-CL00C92B398 Versions earlier than EVA-DL00C17B398 Versions earlier than EVA-L09C185B391 Versions earlier than EVA-L09C432B395 Versions earlier than EVA-L09C464B383 Versions earlier than EVA-L09C605B392 Versions earlier than EVA-L09C635B391 Versions earlier than EVA-L09C636B388 Versions earlier than EVA-L19C10B394 Versions earlier than EVA-L19C432B392 Versions earlier than EVA-L19C605B390 Versions earlier than EVA-L19C636B393 Versions earlier than EVA-L29C636B389 Versions earlier than EVA-TL00C01B398 HUAWEI P9 Plus Versions earlier than VIE-L09C318B182 Versions earlier than VIE-L09C432B380 Versions earlier than VIE-L09C576B180 Versions earlier than VIE-L29C605B370 Versions earlier than VIE-L29C636B388

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-5fxj-3vg5-qmf8

Advisory Details

Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart.

CVSS Scoring

CVSS Score

5.0

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2017-17171
WEB https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone-en
WEB http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone

Advisory provided by GitHub Security Advisory Database. Published: May 14, 2022, Modified: May 14, 2022

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone
Published: 2018-06-01T14:00:00
Last Modified: 2024-08-05T20:43:59.889Z
Copied to clipboard!