CVE-2016-6180

CWE-284 — Improper Access Control3 documents3 sources

Severity

7.0HIGH

EPSS

0.0%

top 95.21%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Honor 4C Firmware

Timeline

PublishedSep 7

Latest updateMay 17

Description

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6181, CVE-2016-6182, CVE-2016-6183, and CVE-2016-6184.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.0 | Impact: 5.9

Affected Packages1 packages

▶NVDhuawei/honor_4c_firmware6 versions+5

🔴Vulnerability Details

GHSA

GHSA-hcxq-r64r-5p65: The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00↗2022-05-17

▶

CVEList

CVE-2016-6180: The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00↗2016-09-07

▶