CVE-2017-2697

CWE-119 — Buffer Overflow3 documents3 sources

Severity

7.8HIGH

EPSS

0.1%

top 77.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei GT3 Firmware Huawei Honor 5C Firmware Huawei KNT Firmware +2 more

Timeline

PublishedNov 22

Latest updateMay 17

Description

The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B160 and earlier versions,VNS-L21C185B142 and earlier versions,CAM-L21C10B130 and earlier versions,CAM-L21C185B141 and earlier versions has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to cra…

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages5 packages

▶NVDhuawei/gt3_firmwarenmo-l31c432b120

▶NVDhuawei/knt_firmwareknt-al10c746b160

▶NVDhuawei/y6ii_firmwarecam-l21c10b130+1

▶NVDhuawei/p9_lite_firmwarevns-l21c185b142

▶NVDhuawei/honor_5c_firmwarenem-l51c432b120

🔴Vulnerability Details

GHSA

GHSA-jhvq-9x2q-6898: The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B16↗2022-05-17

▶

CVEList

CVE-2017-2697: The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B16↗2017-11-22

▶