← Volver a CVEs
CVE-2017-17224
HIGH8.8
Descripcion
Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.
Detalles CVE
Puntuacion CVSS v3.18.8
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueADJACENT_NETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado11/12/2019
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0
Productos afectados
huawei:hg655mhuawei:hg655m_firmware
Debilidades (CWE)
CWE-476
Referencias
https://fortiguard.com/zeroday/FG-VD-18-017(psirt@huawei.com)
http://www.huawei.com/en/psirt/security-notices/huawei-sn-20180327-01-hg655m-en(af854a3a-2127-422b-91ae-364da2661108)
https://fortiguard.com/zeroday/FG-VD-18-017(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.