CVE-2018-7899
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
The Mali Driver of Huawei Berkeley-AL20 and Berkeley-BD smart phones with software Berkeley-AL20 8.0.0.105(C00), 8.0.0.111(C00), 8.0.0.112D(C00), 8.0.0.116(C00), 8.0.0.119(C00), 8.0.0.119D(C00), 8.0.0.122(C00), 8.0.0.132(C00), 8.0.0.132D(C00), 8.0.0.142(C00), 8.0.0.151(C00), Berkeley-BD 1.0.0.21, 1.0.0.22, 1.0.0.23, 1.0.0.24, 1.0.0.26, 1.0.0.29 has a double free vulnerability. An attacker can trick a user to install a malicious application and exploit this vulnerability when in the exception handling process. Successful exploitation may cause system reboot.
El controlador Mali de los smartphones Huawei Berkeley-AL20 y Berkeley-BD con software Berkeley-AL20 8.0.0.105(C00), 8.0.0.111(C00), 8.0.0.112D(C00), 8.0.0.116(C00), 8.0.0.119(C00), 8.0.0.119D(C00), 8.0.0.122(C00), 8.0.0.132(C00), 8.0.0.132D(C00), 8.0.0.142(C00), 8.0.0.151(C00) y Berkeley-BD 1.0.0.21, 1.0.0.22, 1.0.0.23, 1.0.0.24, 1.0.0.26 y 1.0.0.29 tiene una vulnerabilidad de doble liberación (double free). Un atacante puede engañar a un usuario para que instale una aplicación maliciosa y explotar esta vulnerabilidad mientras se está en el proceso de gestión de excepciones. Su explotación exitosa podría provocar el rearranque del sistema.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-03-09 CVE Reserved
- 2018-04-19 CVE Published
- 2024-02-26 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-415: Double Free
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180418-01-smartphone | 2018-05-22 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.105\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.105\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.111\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.111\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.112d\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.112d\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.116\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.116\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.119\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.119\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.119d\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.119d\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.122\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.122\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.132\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.132\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.132d\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.132d\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.142\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.142\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-al20 Firmware Search vendor "Huawei" for product "Berkeley-al20 Firmware" | 8.0.0.151\(c00\) Search vendor "Huawei" for product "Berkeley-al20 Firmware" and version "8.0.0.151\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-al20 Search vendor "Huawei" for product "Berkeley-al20" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-bd Firmware Search vendor "Huawei" for product "Berkeley-bd Firmware" | 1.0.0.21 Search vendor "Huawei" for product "Berkeley-bd Firmware" and version "1.0.0.21" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-bd Search vendor "Huawei" for product "Berkeley-bd" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-bd Firmware Search vendor "Huawei" for product "Berkeley-bd Firmware" | 1.0.0.22 Search vendor "Huawei" for product "Berkeley-bd Firmware" and version "1.0.0.22" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-bd Search vendor "Huawei" for product "Berkeley-bd" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-bd Firmware Search vendor "Huawei" for product "Berkeley-bd Firmware" | 1.0.0.23 Search vendor "Huawei" for product "Berkeley-bd Firmware" and version "1.0.0.23" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-bd Search vendor "Huawei" for product "Berkeley-bd" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-bd Firmware Search vendor "Huawei" for product "Berkeley-bd Firmware" | 1.0.0.24 Search vendor "Huawei" for product "Berkeley-bd Firmware" and version "1.0.0.24" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-bd Search vendor "Huawei" for product "Berkeley-bd" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-bd Firmware Search vendor "Huawei" for product "Berkeley-bd Firmware" | 1.0.0.26 Search vendor "Huawei" for product "Berkeley-bd Firmware" and version "1.0.0.26" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-bd Search vendor "Huawei" for product "Berkeley-bd" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Berkeley-bd Firmware Search vendor "Huawei" for product "Berkeley-bd Firmware" | 1.0.0.29 Search vendor "Huawei" for product "Berkeley-bd Firmware" and version "1.0.0.29" | - |
Affected
| in | Huawei Search vendor "Huawei" | Berkeley-bd Search vendor "Huawei" for product "Berkeley-bd" | - | - |
Safe
|