CVE-2017-8212
CVE-2017-8212
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 1.0%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
22 nov 2017Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The driver of honor 5C,honor 6x Huawei smart phones with software of versions earlier than NEM-AL10C00B356, versions earlier than Berlin-L21HNC432B360 have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege of the Android system, the APP can send a specific parameter to the driver of the smart phone, causing a system reboot or arbitrary code execution.
Productos afectados
Huawei Technologies Co., Ltd. · honor 5C,honor 6x¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →