CVE-2017-8148
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Audio driver in P9 smartphones with software The versions before EVA-AL10C00B389 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the race condition cause null pointer accessing during the application access shared resource, which make the system reboot.
El controlador de audio en los smartphones P9 con versiones de software anteriores a EVA-AL10C00B389 tiene una vulnerabilidad de denegación de servicio (DoS). Un atacante podría engañar a un usuario para que instale una aplicación maliciosa en el smartphonne y una condición de carrera causaría el acceso a un puntero nulo cuando la aplicación accede a los recursos compartidos, lo que haría que se reinicie el sistema.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-04-25 CVE Reserved
- 2017-11-22 CVE Published
- 2024-07-28 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170802-01-smartphone-en | 2017-12-12 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | P9 Firmware Search vendor "Huawei" for product "P9 Firmware" | < eva-al10c00b389 Search vendor "Huawei" for product "P9 Firmware" and version " < eva-al10c00b389" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Search vendor "Huawei" for product "P9" | - | - |
Safe
|