Vulnerability Details CVE-2017-15316
The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huawei smart phones with software before LON-AL00B 8.0.0.334(C00) has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can call special API, which triggers double free and causes a system crash or arbitrary code execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 9.3
References
Products affected by CVE-2017-15316
-
cpe:2.3:h:huawei:mate_9:-
-
cpe:2.3:h:huawei:mate_9_pro:-
-
cpe:2.3:o:huawei:mate_9_firmware:-
-
cpe:2.3:o:huawei:mate_9_firmware:8.0.0.129(sp2c00)
-
cpe:2.3:o:huawei:mate_9_firmware:8.0.0.356(c00)
-
cpe:2.3:o:huawei:mate_9_firmware:9.0.1.158(c432e6r1p8t8)
-
cpe:2.3:o:huawei:mate_9_firmware:9.0.1.159(c636e6r1p8t8)
-
cpe:2.3:o:huawei:mate_9_firmware:mha-al00ac00b125
-
cpe:2.3:o:huawei:mate_9_pro_firmware:-
-
cpe:2.3:o:huawei:mate_9_pro_firmware:8.0.0.129(sp2c01)
-
cpe:2.3:o:huawei:mate_9_pro_firmware:8.0.0.343(c00)
-
cpe:2.3:o:huawei:mate_9_pro_firmware:8.0.0.356(c00)
-
cpe:2.3:o:huawei:mate_9_pro_firmware:8.0.0.360(c721)
-
cpe:2.3:o:huawei:mate_9_pro_firmware:8.0.0.363(c00)