CVE-2017-17313
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The inputhub driver of HUAWEI P9 Lite mobile phones with Versions earlier than VNS-L21C02B341, Versions earlier than VNS-L21C22B380, Versions earlier than VNS-L31C02B341, Versions earlier than VNS-L31C440B390, Versions earlier than VNS-L31C636B396 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP and the APP may sends specific data to the inputhub driver to exploit this vulnerability, successful exploit could cause the system reboot.
El controlador inputhub de los teléfonos móviles HUAWEI P9 Lite en versiones anteriores a la VNS-L21C02B341, anteriores a la VNS-L21C22B380, anteriores a la VNS-L31C02B341, anteriores a la VNS-L31C440B390 y anteriores a la VNS-L31C636B396 tiene una vulnerabilidad de desbordamiento de búfer debido a la falta de validación de parámetros. Un atacante engaña a un usuario para que instale una aplicación maliciosa y esta envía datos concretos al controlador inputhub para explotar esta vulnerabilidad que, si se explota correctamente, podría provocar el reinicio del dispositivo.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-12-04 CVE Reserved
- 2018-04-19 CVE Published
- 2024-02-26 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180418-02-smartphone-en | 2018-05-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | P9 Lite Firmware Search vendor "Huawei" for product "P9 Lite Firmware" | < vns-l31c02b341 Search vendor "Huawei" for product "P9 Lite Firmware" and version " < vns-l31c02b341" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Lite Search vendor "Huawei" for product "P9 Lite" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Lite Firmware Search vendor "Huawei" for product "P9 Lite Firmware" | < vns-l21c22b380 Search vendor "Huawei" for product "P9 Lite Firmware" and version " < vns-l21c22b380" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Lite Search vendor "Huawei" for product "P9 Lite" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Lite Firmware Search vendor "Huawei" for product "P9 Lite Firmware" | < vns-l31c02b341 Search vendor "Huawei" for product "P9 Lite Firmware" and version " < vns-l31c02b341" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Lite Search vendor "Huawei" for product "P9 Lite" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Lite Firmware Search vendor "Huawei" for product "P9 Lite Firmware" | < vns-l31c440b390 Search vendor "Huawei" for product "P9 Lite Firmware" and version " < vns-l31c440b390" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Lite Search vendor "Huawei" for product "P9 Lite" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Lite Firmware Search vendor "Huawei" for product "P9 Lite Firmware" | < vns-l31c636b396 Search vendor "Huawei" for product "P9 Lite Firmware" and version " < vns-l31c636b396" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Lite Search vendor "Huawei" for product "P9 Lite" | - | - |
Safe
|