CVE-2017-17224

EPSS 0.4%

Vexday Risk Score

3Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS —EPSS 0.4%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

12 Nov 2019Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.

Affected products

Huawei · HG655m

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://fortiguard.com/zeroday/FG-VD-18-017 http://www.huawei.com/en/psirt/security-notices/huawei-sn-20180327-01-hg655m-en