Denial of Service and Privilege Escalation in Huawei Honor 4C Camera Driver
CVE-2016-6181

7HIGH

Key Information:

Vendor: Huawei
Status: Honor 4c Firmware
Vendor: CVE Published:; 7 September 2016

What is CVE-2016-6181?

The Camera driver in specific versions of Huawei Honor 4C smartphones has an exploit that enables attackers to create a denial of service, causing the system to crash, or to escalate privileges through malicious applications. This affects multiple software iterations of the device, necessitating prompt attention to applied security measures.

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 7, 2016
Vulnerability Reserved
Jul 7, 2016