CVE-2017-17306

Name of the Vulnerable Software and Affected Versions: Huawei Smartphones version VNS-L21AUTC555B141 Huawei Smartphones version VNS-L21C10B160 Huawei Smartphones version VNS-L21C66B160 Huawei Smartphones version VNS-L21C703B140

Description: The issue is related to an array out-of-bounds read. Due to the lack of array verification, an attacker can trick a user into installing a malicious application. This application can exploit the issue, allowing the attacker to read out of the array bounds, potentially causing the device to behave abnormally.

Recommendations: For version VNS-L21AUTC555B141, update the software to a version that includes the fix for this issue. For version VNS-L21C10B160, update the software to a version that includes the fix for this issue. For version VNS-L21C66B160, update the software to a version that includes the fix for this issue. For version VNS-L21C703B140, update the software to a version that includes the fix for this issue. As a temporary workaround, consider restricting the installation of applications from untrusted sources to minimize the risk of exploitation.