Denial of Service Vulnerability in Huawei Honor 5C and P9 Lite Wi-Fi Driver
CVE-2017-8143

5.5MEDIUM

Key Information:

Vendor: McAfee
Status: Honor 5c, P9 Lite
Vendor: CVE Published:; 22 November 2017

Summary

The Wi-Fi driver within the Huawei Honor 5C and P9 Lite smartphones is susceptible to a Denial of Service (DoS) attack. This vulnerability allows an attacker to manipulate a user into installing a malicious application. Once deployed, the malicious app can exploit the driver's invalid memory address access, potentially crashing the device's system and disrupting user access to important functionalities.

Affected Version(s)

Honor 5C, P9 Lite Versions earlier than NEM-L21C432B351, Versions earlier than VNS-L21C10B381

References

http://www.securityfocus.com/bid/99256

vdb-entryx_refsource_BID

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Nov 22, 2017
Vulnerability Reserved
Apr 25, 2017