HIGH🇬🇧 English

CVE-2017-2725

CVSS 7.8v3.0pub. 2017-11-22upd. 2026-05-13

Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-AL00C00B123 versions have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.

oryginał EN
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Huawei P10

    HW
    Huawei
    wszystkie wersje
  • Huawei P10 Firmware

    OS
    Huawei
    < vtr-al00c00b123
  • Huawei P10 Plus

    HW
    Huawei
    wszystkie wersje
  • Huawei P10 Plus Firmware

    OS
    Huawei
    < vky-al00c00b123
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCEMemory
CWE
Referencje

Powiązane podatności

CVE-2017-8150HIGH7.8ten sam produkt

The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B...

CVE-2017-8141HIGH7.8ten sam produkt

The Touch Panel (TP) driver in P10 Plus smart phones with software versions earlier than VKY-AL00C00B153 has a...

CVE-2017-2726HIGH8.4ten sam produkt

Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-...

CVE-2017-2724HIGH8.4ten sam produkt

Bastet in P10 Plus and P10 smart phones with software earlier than VKY-AL00C00B123 versions, earlier than VTR-...

CVE-2020-1872MEDIUM4.6ten sam produkt

Huawei smart phones P10 Plus with versions earlier than 9.1.0.201(C01E75R1P12T8), earlier than 9.1.0.252(C185E...