The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B160 and earlier versions,VNS-L21C185B142 and earlier versions,CAM-L21C10B130 and earlier versions,CAM-L21C185B141 and earlier versions has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege.
References
Link | Resource |
---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170208-02-smartphone-en | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
History
No history.
Information
Published : 2017-11-22 19:29
Updated : 2024-02-28 16:04
NVD link : CVE-2017-2697
Mitre link : CVE-2017-2697
CVE.ORG link : CVE-2017-2697
JSON object : View
Products Affected
huawei
- knt_firmware
- honor_5c_firmware
- p9_lite_firmware
- y6ii_firmware
- gt3_firmware
- knt
- p9_lite
- y6ii
- honor_5c
- gt3
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer