Vulnerability Details CVE-2017-17172
Huawei smart phones LYO-L21 with software LYO-L21C479B107, LYO-L21C479B107 have a privilege escalation vulnerability. An authenticated, local attacker can crafts malformed packets after tricking a user to install a malicious application and exploit this vulnerability when in the exception handling process. Successful exploitation may cause the attacker to obtain a higher privilege of the smart phones.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.8%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 4.4
References
Products affected by CVE-2017-17172
-
cpe:2.3:h:huawei:lyo-l21:-
-
cpe:2.3:o:huawei:lyo-l21_firmware:lyo-l21c479b107
-
cpe:2.3:o:huawei:lyo-l21_firmware:lyo-l21c577b126