The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a arbitrary memory write vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.

Related CVEs

CVE-2017-8181

Key Information

GHSA ID

GHSA-v99v-r6h2-x6wv

Published

May 17, 2022 12:17 AM

Last Modified

May 17, 2022 12:17 AM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: August 31, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.