HIGH🇵🇱 Wersja polska

CVE-2017-8140

CVSS 7.8v3.0pub. 2017-11-22upd. 2026-05-13

The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution.

CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Huawei P9 Plus

    HW
    Huawei
    wszystkie wersje
  • Huawei P9 Plus Firmware

    OS
    Huawei
    < vie-al10bc00b353
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2016-8783HIGH7.8ten sam produkt

Touchscreen drive in Huawei H60 (Honor 6) Versions earlier than H60-L02_6.12.16 and P9 Plus Versions earlier t...

CVE-2016-8759HIGH7.8ten sam produkt

Video driver in Huawei P9 phones with software versions before EVA-AL10C00B192 and Huawei Honor 6 phones with ...

CVE-2016-8760HIGH7.8ten sam produkt

Touchscreen driver in Huawei P9 phones with software versions before EVA-AL10C00B192 and Huawei Honor 6 phones...

CVE-2016-8761HIGH7.8ten sam produkt

Video driver in Huawei P9 phones with software versions before EVA-AL10C00B192 and Huawei Honor 6 phones with ...

CVE-2017-17171MEDIUM4.2ten sam produkt

Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of mali...