Buffer Overflow Vulnerability in Huawei Mate 9 Cameras Driver
CVE-2017-2716

7.8HIGH

Key Information:

Vendor: McAfee
Status: Mate 9
Vendor: CVE Published:; 22 November 2017

Summary

The camerafs driver in Huawei Mate 9 is vulnerable to a buffer overflow that can be exploited by an attacker. By tricking users into installing malicious applications with system privileges, the attacker can send specific parameters to the device's driver. This can lead to a system crash or provide escalated privileges, compromising the device's security and user data.

Affected Version(s)

Mate 9 Versions earlier than MHA-AL00BC00B173

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 22, 2017
Vulnerability Reserved
Dec 1, 2016