CVE-2018-7906

Name of the Vulnerable Software and Affected Versions: Huawei smart phones with software of Leland-AL00 version 8.0.0.114(C636) Huawei smart phones with software of Leland-AL00A version 8.0.0.171(C00)

Description: The issue is related to a denial of service (DoS) vulnerability. An attacker can exploit this by tricking a user into installing a malicious application. The vulnerability is caused by insufficient verification of a parameter, which can lead to successful exploitation causing the smartphone to have a black screen until it is restarted.

Recommendations: For Huawei smart phones with software of Leland-AL00 version 8.0.0.114(C636), update the software to a version that fixes the insufficient parameter verification issue. For Huawei smart phones with software of Leland-AL00A version 8.0.0.171(C00), update the software to a version that fixes the insufficient parameter verification issue. As a temporary workaround, consider avoiding the installation of applications from untrusted sources to minimize the risk of exploitation.