CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-17307

Some Huawei Smartphones with software of VNS-L21AUTC555B141 have an out-of-bounds read vulnerability. Due to the lack string terminator of string, an attacker tricks a user into installing a malicious application, and the application can exploit the vulnerability and make attacker to read out of bounds and possibly cause the device abnormal.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.6%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180314-01-read-en
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180314-01-read-en

Products affected by CVE-2017-17307

Huawei » Vns-L21 » Version: N/A

cpe:2.3:h:huawei:vns-l21:-
Huawei » Vns-L21 Firmware » Version: vns-l21autc555b141

cpe:2.3:o:huawei:vns-l21_firmware:vns-l21autc555b141

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-17307

Products

Pricing

Contact Us