CVE-2018-7906
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Some Huawei smart phones with software of Leland-AL00 8.0.0.114(C636), Leland-AL00A 8.0.0.171(C00) have a denial of service (DoS) vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Due to insufficient verification of the parameter, successful exploitation can cause the smartphone black screen until restarting the phone.
Algunos smartphones Huawei con software Leland-AL00 8.0.0.114(C636) y Leland-AL00A 8.0.0.171(C00) tienen una vulnerabilidad de denegación de servicio (DoS). Un atacante puede engañar a un usuario para que instale una aplicación maliciosa para explotar esta vulnerabilidad. Debido a la verificación insuficiente del parámetro, su explotación con éxito podría provocar que la pantalla del smartphone se vuelva negra hasta que se reinicie el teléfono.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2018-03-09 CVE Reserved
- 2018-09-12 CVE Published
- 2024-07-22 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
URL | Tag | Source |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180905-01-smartphone-en | 2018-11-27 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Huawei Search vendor "Huawei" | Leland-al00 Firmware Search vendor "Huawei" for product "Leland-al00 Firmware" | 8.0.0.114\(c636\) Search vendor "Huawei" for product "Leland-al00 Firmware" and version "8.0.0.114\(c636\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Leland-al00 Search vendor "Huawei" for product "Leland-al00" | - | - |
Safe
|
Huawei Search vendor "Huawei" | Lleland-al00a Firmware Search vendor "Huawei" for product "Lleland-al00a Firmware" | 8.0.0.171\(c00\) Search vendor "Huawei" for product "Lleland-al00a Firmware" and version "8.0.0.171\(c00\)" | - |
Affected
| in | Huawei Search vendor "Huawei" | Lleland-al00a Search vendor "Huawei" for product "Lleland-al00a" | - | - |
Safe
|