← Back to CVEs
CVE-2017-17224
HIGH8.8
Description
Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.
CVE Details
CVSS v3.1 Score8.8
SeverityHIGH
CVSS VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorADJACENT_NETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published11/12/2019
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
huawei:hg655mhuawei:hg655m_firmware
Weaknesses (CWE)
CWE-476
References
https://fortiguard.com/zeroday/FG-VD-18-017(psirt@huawei.com)
http://www.huawei.com/en/psirt/security-notices/huawei-sn-20180327-01-hg655m-en(af854a3a-2127-422b-91ae-364da2661108)
https://fortiguard.com/zeroday/FG-VD-18-017(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.