CVE-2017-2729
published 2017-11-22CVE-2017-2729: The boot loaders in Honor 5A smart phones with software Versions earlier than CAM-TL00C01B193,Versions earlier than CAM-TL00HC00B193,Versions earlier than…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
The boot loaders in Honor 5A smart phones with software Versions earlier than CAM-TL00C01B193,Versions earlier than CAM-TL00HC00B193,Versions earlier than CAM-UL00C00B193 have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | honor_5a_firmware | < cam-tl00c01b193 | cam-tl00c01b193 |
| huawei | honor_5a_firmware | < cam-tl00hc00b193 | cam-tl00hc00b193 |
| huawei | honor_5a_firmware | < cam-ul00c00b193 | cam-ul00c00b193 |
| huawei | p8_lite_firmware | < ale-l02c635b568 | ale-l02c635b568 |
| huawei | p8_lite_firmware | < ale-l21c10b541 | ale-l21c10b541 |
| huawei | p8_lite_firmware | < ale-l21c185b568 | ale-l21c185b568 |
| huawei | p8_lite_firmware | < ale-l21c432b596 | ale-l21c432b596 |
| huawei | p8_lite_firmware | < ale-l21c464b595 | ale-l21c464b595 |
| huawei | p8_lite_firmware | < ale-l21c636b568 | ale-l21c636b568 |
| huawei | p8_lite_firmware | < ale-l23c605b535 | ale-l23c605b535 |
| huawei_technologies_co_ltd | honor_5a | — | — |