← Retour aux CVEs
CVE-2017-17224
HIGH8.8
Description
Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.
Details CVE
Score CVSS v3.18.8
SeveriteHIGH
Vecteur CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Vecteur d'attaqueADJACENT_NETWORK
ComplexiteLOW
Privileges requisNONE
Interaction utilisateurNONE
Publie11/12/2019
Derniere modification11/21/2024
Sourcenvd
Observations honeypot0
Produits affectes
huawei:hg655mhuawei:hg655m_firmware
Faiblesses (CWE)
CWE-476
References
https://fortiguard.com/zeroday/FG-VD-18-017(psirt@huawei.com)
http://www.huawei.com/en/psirt/security-notices/huawei-sn-20180327-01-hg655m-en(af854a3a-2127-422b-91ae-364da2661108)
https://fortiguard.com/zeroday/FG-VD-18-017(af854a3a-2127-422b-91ae-364da2661108)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.