CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-17224

Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 19.5%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 5.8

References

http://www.huawei.com/en/psirt/security-notices/huawei-sn-20180327-01-hg655m-en
https://fortiguard.com/zeroday/FG-VD-18-017
http://www.huawei.com/en/psirt/security-notices/huawei-sn-20180327-01-hg655m-en
https://fortiguard.com/zeroday/FG-VD-18-017

Products affected by CVE-2017-17224

Huawei » Hg655m » Version: N/A

cpe:2.3:h:huawei:hg655m:-
Huawei » Hg655m Firmware » Version: N/A

cpe:2.3:o:huawei:hg655m_firmware:-
Huawei » Hg655m Firmware » Version: harry-al00c_9.1.0.206(c00e205r3p1)

cpe:2.3:o:huawei:hg655m_firmware:harry-al00c_9.1.0.206(c00e205r3p1)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-17224

Products

Pricing

Contact Us