CVE-2015-4422

CWE-119 — Buffer Overflow7 documents4 sources

Severity

7.0HIGH

EPSS

0.1%

top 79.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Mate 7 Firmware

Timeline

PublishedOct 19

Latest updateMay 17

Description

The TEEOS module in Huawei Mate 7 (Mate7-TL10) smartphones before V100R001CHNC00B126SP03 allows local users with root permissions to gain privileges or cause a denial of service (memory corruption) via a crafted application.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages1 packages

▶NVDhuawei/mate_7_firmwarev100r001chnc00b123sp03

🔴Vulnerability Details

GHSA

GHSA-w54j-8rj9-7q4j: The TEEOS module in Huawei Mate 7 (Mate7-TL10) smartphones before V100R001CHNC00B126SP03 allows local users with root permissions to gain privileges o↗2022-05-17

▶

CVEList

CVE-2015-4422: The TEEOS module in Huawei Mate 7 (Mate7-TL10) smartphones before V100R001CHNC00B126SP03 allows local users with root permissions to gain privileges o↗2017-10-19

▶

💬Community

Bugzilla

CVE-2015-3427 quassel: SQL injection flaw (incomplete fix for CVE-2013-4422)↗2015-04-28

▶