Privilege Escalation and System Crash Vulnerability in Huawei Mate and P8 Smartphones
CVE-2016-8791

7.1HIGH

Summary

This vulnerability affects various Huawei smartphone models, allowing attackers with graphic or camera privileges to trigger a system crash or escalate their privileges. The flaw exists in multiple software versions for the Huawei Mate 8, Mate S, and P8 devices, which can be exploited in scenarios where the attacker has limited access. This poses significant security risks to users, as it may lead to unauthorized access and operational disruptions.

Affected Version(s)

Mate 8,Mate S,P8 before NXT-AL10C00B386, before NXT-CL00C92B386, before NXT-DL00C17B386, before NXT-TL00C01B386, before CRR-CL00C92B368, before CRR-CL20C92B368, before CRR-TL00C01B368, before CRR-UL00C00B368, before CRR-UL20C00B368, before GRA-TL00C01B366, before GRA-CL00C92B366, before GRA-CL10C92B366, before GRA-UL00C00B366, before GRA-UL10C00B366 Mate 8,Mate S,P8 Versions before NXT-AL10C00B386,Versions before NXT-CL00C92B386,Versions before NXT-DL00C17B386,Versions before NXT-TL00C01B386,Versions before CRR-CL00C92B368,Versions before CRR-CL20C92B368,Versions before CRR-TL00C01B368,Versions before CRR-UL00C00B368,Versions before CRR-UL20C00B368,Versions before GRA-TL00C01B366,Versions before GRA-CL00C92B366,Versions before GRA-CL10C92B366,Versions before GRA-UL00C00B366,Versions before GRA-UL10C00B366

References

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.