Buffer Overflow Vulnerability in Huawei Mobile Devices
CVE-2016-8774

6.7MEDIUM

Summary

A vulnerability in the HIFI driver within Huawei smartphones, such as the Mate 8, Mate S, P8, and P9, has been identified, permitting attackers to exploit a buffer overflow. This could lead to unauthorized root privileges, arbitrary code execution, or cause the system to crash. Devices operating on specific outdated software versions are particularly at risk, emphasizing the importance of timely updates to maintain security.

Affected Version(s)

Mate 8,Mate S,P8,P9 before NXT-AL10C00B386, before NXT-CL00C92B386, before NXT-DL00C17B386, before NXT-TL00C01B386, before CRR-CL00C92B368, before CRR-CL20C92B368, before CRR-TL00C01B368, before CRR-UL00C00B368, before CRR-UL20C00B368, before GRA-TL00C01B366, before GRA-CL00C92B366, before GRA-CL10C92B366, before GRA-UL00C00B366, before GRA-UL10C00B366, before EVA-AL10C00B190, before EVA-DL10C00B190, before EVA-TL10C00B190, before EVA-CL10C00B190, Mate 8,Mate S,P8,P9 Versions before NXT-AL10C00B386,Versions before NXT-CL00C92B386,Versions before NXT-DL00C17B386,Versions before NXT-TL00C01B386,Versions before CRR-CL00C92B368,Versions before CRR-CL20C92B368,Versions before CRR-TL00C01B368,Versions before CRR-UL00C00B368,Versions before CRR-UL20C00B368,Versions before GRA-TL00C01B366,Versions before GRA-CL00C92B366,Versions before GRA-CL10C92B366,Versions before GRA-UL00C00B366,Versions before GRA-UL10C00B366,Versions before EVA-AL10C00B190,Versions before EVA-DL10C00B190,Versions before EVA-TL10C00B190,Versions before EVA-CL10C00B190,

References

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.