CVE-2017-8160

Name of the Vulnerable Software and Affected Versions Huawei smart phones with software versions earlier than Vicky-AL00AC00B172 Huawei smart phones with software version Vicky-AL00CC768B122 Huawei smart phones with software version Vicky-TL00AC01B167 Huawei smart phones with software versions earlier than Victoria-AL00AC00B172 Huawei smart phones with software version Victoria-TL00AC00B123 Huawei smart phones with software version Victoria-TL00AC01B167

Description The issue is related to a use after free (UAF) vulnerability in the Madapt Driver of some Huawei smart phones. An attacker can exploit this vulnerability by tricking a user into installing a malicious application with high privilege. Successful exploitation may cause arbitrary code execution.

Recommendations For versions earlier than Vicky-AL00AC00B172, update to version Vicky-AL00AC00B172 or later. For version Vicky-AL00CC768B122, update to a version that includes the fix for this issue. For version Vicky-TL00AC01B167, update to a version that includes the fix for this issue. For versions earlier than Victoria-AL00AC00B172, update to version Victoria-AL00AC00B172 or later. For version Victoria-TL00AC00B123, update to a version that includes the fix for this issue. For version Victoria-TL00AC01B167, update to a version that includes the fix for this issue.