CVE-2017-8148

CWE-362Race Condition3 documents3 sources
Severity
4.7MEDIUM
EPSS
0.1%
top 83.21%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei P9 FirmwareHuawei Technologies Co., Ltd. P9
Timeline
PublishedNov 22
Latest updateMay 17

Description

Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the race condition cause null pointer accessing during the application access shared resource, which make the system reboot.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages2 packages

NVDhuawei/p9_firmware< eva-al10c00b389
CVEListV5huawei_technologies_co.,_ltd./p9The versions before EVA-AL10C00B389

🔴Vulnerability Details

2
GHSA
GHSA-44gj-p79x-95g6: Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service (DoS) vulnerability2022-05-17
CVEList
CVE-2017-8148: Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service (DoS) vulnerability2017-11-22
CVE-2017-8148 (MEDIUM CVSS 4.7) | Audio driver in P9 smartphones with | cvebase.io