CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-17324

Huawei Mate 9 Pro smartphones with software LON-AL00BC00B139D; LON-AL00BC00B229 have an integer overflow vulnerability. The camera driver does not validate the external input parameters and causes an integer overflow, which in the after processing results in a buffer overflow. An attacker tricks the user to install a crafted application, successful exploit could cause malicious code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 56.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://www.huawei.com/en/psirt/security-advisories/2018/huawei-sa-20180124-01-smartphone-en
http://www.huawei.com/en/psirt/security-advisories/2018/huawei-sa-20180124-01-smartphone-en

Products affected by CVE-2017-17324

Huawei » Mate 9 Pro » Version: N/A

cpe:2.3:h:huawei:mate_9_pro:-
Huawei » Mate 9 Pro Firmware » Version: lon-al00bc00b139d

cpe:2.3:o:huawei:mate_9_pro_firmware:lon-al00bc00b139d
Huawei » Mate 9 Pro Firmware » Version: lon-al00bc00b229

cpe:2.3:o:huawei:mate_9_pro_firmware:lon-al00bc00b229

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-17324

Products

Pricing

Contact Us