Vulnerability Details CVE-2016-8764
The TrustZone driver in Huawei P9 phones with software Versions earlier than EVA-AL10C00B352 and P9 Lite with software VNS-L21C185B130 and earlier versions and P8 Lite with software ALE-L02C636B150 and earlier versions has an input validation vulnerability, which allows attackers to read and write user-mode memory data anywhere in the TrustZone driver.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.8%
CVSS Severity
CVSS v3 Score 6.4
CVSS v2 Score 4.1
References
Products affected by CVE-2016-8764
-
cpe:2.3:h:huawei:p8_lite:-
-
cpe:2.3:h:huawei:p9:-
-
cpe:2.3:h:huawei:p9_lite:-
-
cpe:2.3:o:huawei:p8_lite_firmware:ale-l02c635b140
-
cpe:2.3:o:huawei:p8_lite_firmware:ale-l02c635b568
-
cpe:2.3:o:huawei:p8_lite_firmware:ale-l02c636b140
-
cpe:2.3:o:huawei:p8_lite_firmware:ale-l02c636b150
-
cpe:2.3:o:huawei:p9_firmware:-
-
cpe:2.3:o:huawei:p9_lite_firmware:-
-
cpe:2.3:o:huawei:p9_lite_firmware:vns-l21c10b381
-
cpe:2.3:o:huawei:p9_lite_firmware:vns-l21c185
-
cpe:2.3:o:huawei:p9_lite_firmware:vns-l21c185b130
-
cpe:2.3:o:huawei:p9_lite_firmware:vns-l21c22b380