CVE-2016-8757

CWE-200 — Information Exposure3 documents3 sources

Severity

3.3LOW

EPSS

0.1%

top 76.76%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei P9 Firmware

Timeline

PublishedApr 2

Latest updateMay 14

Description

ION memory management module in Huawei P9 phones with software EVA-AL10C00B192 and earlier versions, EVA-DL10C00B192 and earlier versions, EVA-TL10C00B192 and earlier versions, EVA-CL10C00B192 and earlier versions allows attackers to obtain sensitive information from uninitialized memory.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages1 packages

▶NVDhuawei/p9_firmwareeva-al10 — eva-al10c00b192+3

🔴Vulnerability Details

GHSA

GHSA-f4wp-hvr8-r9hw: ION memory management module in Huawei P9 phones with software EVA-AL10C00B192 and earlier versions, EVA-DL10C00B192 and earlier versions, EVA-TL10C00↗2022-05-14

▶

CVEList

CVE-2016-8757: ION memory management module in Huawei P9 phones with software EVA-AL10C00B192 and earlier versions, EVA-DL10C00B192 and earlier versions, EVA-TL10C00↗2017-04-02

▶