CVE-2017-17139
published 2018-03-05CVE-2017-17139: Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334(C00); the versions before LON-AL00B 8.0.0.334(C00) have a…
medium5.5CVSS 3.0
AVLACLPRNUIRSUCHINAN
Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334(C00); the versions before LON-AL00B 8.0.0.334(C00) have a information leak vulnerability in the date service proxy implementation. An attacker may trick a user into installing a malicious application and application can exploit the vulnerability to get kernel date which may cause sensitive information leak.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | mate_9_firmware | < mha-al00b_8.0.0.334\(c00\) | mha-al00b_8.0.0.334\(c00\) |
| huawei | mate_9_pro_firmware | < lon-al00b_8.0.0.334\(c00\) | lon-al00b_8.0.0.334\(c00\) |