Heap-based Buffer Overflow in Huawei P8 and Mate S Smartphones
CVE-2015-8319

7.8HIGH

Key Information:

Vendor: Huawei
Status: Mate S Firmware
Vendor: CVE Published:; 7 April 2016

What is CVE-2015-8319?

A heap-based buffer overflow vulnerability exists in the HIFI driver on specific models of Huawei P8 and Mate S smartphones. This flaw can be exploited by attackers through malicious applications, potentially causing a denial of service by crashing the system or allowing unauthorized privilege escalation. The affected software versions include various firmware releases for the mentioned smartphone models, making it essential for users to update their devices to the latest software to mitigate risks.

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 7, 2016
Vulnerability Reserved
Nov 22, 2015