Huawei: >> Johnson-Tl00d Firmware >> 8.2.0.165(c01r1p16) Security Vulnerabilities
Some Huawei smart phones have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone to be abnormal.
CVSS Score
5.3
EPSS Score
0.002
Published
2019-12-14
CVE-2019-2215
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interaction is required to exploit this vulnerability, however exploitation does require either the installation of a malicious local application or a separate vulnerability in a network facing application.Product: AndroidAndroid ID: A-141720095
Known exploited
CVSS Score
7.8
EPSS Score
0.482
Published
2019-10-11