CVE-2018-7922
published 2018-09-12CVE-2018-7922: Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150(C432) have an insufficient input validation vulnerability due to lack of parameter…
high7.8CVSS 3.0
AVLACLPRNUIRSUCHIHAH
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150(C432) have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to exploit the vulnerability. Successful exploit could allow the attacker to execute arbitrary code.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | alp-l09_firmware | < 8.0.0.150\(c432\) | 8.0.0.150\(c432\) |
| huawei_technologies_co_ltd | alp-l09 | — | — |