Vulnerability Details CVE-2017-2734
P9 Plus smartphones with software versions earlier before VIE-AL10BC00B386 have a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a large number of memory allocation and the smart phone will be crash for memory exhaustion.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.9%
CVSS Severity
CVSS v3 Score 5.5
CVSS v2 Score 7.1
References
Products affected by CVE-2017-2734
-
cpe:2.3:h:huawei:p9_plus:-
-
cpe:2.3:o:huawei:p9_plus_firmware:eva-l09c636b388
-
cpe:2.3:o:huawei:p9_plus_firmware:vie-al10
-
cpe:2.3:o:huawei:p9_plus_firmware:vie-al10bc00b353
-
cpe:2.3:o:huawei:p9_plus_firmware:vie-al10bc00b356