CVE-2017-17324
published 2018-03-09CVE-2017-17324: Huawei Mate 9 Pro smartphones with software LON-AL00BC00B139D; LON-AL00BC00B229 have an integer overflow vulnerability. The camera driver does not validate the…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
Huawei Mate 9 Pro smartphones with software LON-AL00BC00B139D; LON-AL00BC00B229 have an integer overflow vulnerability. The camera driver does not validate the external input parameters and causes an integer overflow, which in the after processing results in a buffer overflow. An attacker tricks the user to install a crafted application, successful exploit could cause malicious code execution.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | mate_9_pro_firmware | — | — |
| huawei | mate_9_pro_firmware | — | — |
| huawei_technologies_co_ltd | mate_9_pro | — | — |
| huawei_technologies_co_ltd | mate_9_pro | — | — |