CVE-2018-7987

CWE-787Out-of-bounds Write3 documents3 sources
Severity
5.9MEDIUM
EPSS
0.2%
top 60.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei P20 FirmwareHuawei Technologies Co., Ltd. Huawei P20
Timeline
PublishedDec 4
Latest updateMay 14

Description

There is an out-of-bounds write vulnerability on Huawei P20 smartphones with versions before 8.1.0.171(C00). The software does not handle the response message properly when the user doing certain inquiry operation, an attacker could send crafted message to the device, successful exploit could cause a denial of service condition.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages2 packages

NVDhuawei/p20_firmware< 8.1.0.171\(c00\)
CVEListV5huawei_technologies_co.,_ltd./huawei_p20the versions before 8.1.0.171(C00)

🔴Vulnerability Details

2
GHSA
GHSA-9jhh-f5r5-cq57: There is an out-of-bounds write vulnerability on Huawei P20 smartphones with versions before 82022-05-14
CVEList
CVE-2018-7987: There is an out-of-bounds write vulnerability on Huawei P20 smartphones with versions before 82018-12-04
CVE-2018-7987 (MEDIUM CVSS 5.9) | There is an out-of-bounds write vul | cvebase.io