Huawei Enjoy 5s and Y6 Pro smartphones with software the versions before TAG-AL00C92B170; the versions before TIT-L01C576B121 have an information leak vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious application on the smart phone and the application can read some sensitive information in kernel memory which may cause sensitive information leak.

Related CVEs

CVE-2017-17140

Key Information

GHSA ID

GHSA-36wj-23jx-jgg5

Published

May 14, 2022 3:35 AM

Last Modified

May 14, 2022 3:35 AM

CVSS Score

5.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: September 1, 2025 6:32 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.