PT-2017-15500 · Huawei · Huawei P9
Published
2017-11-22
·
Updated
2017-12-12
·
CVE-2017-2713
CVSS v3.1
5.4
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
HUAWEI P9 smartphones with software versions earlier than EVA-L09C432B383
HUAWEI P9 smartphones with software versions earlier than EVA-L09C636B380
HUAWEI P9 smartphones with software versions earlier than VIE-L09C432B370
HUAWEI P9 smartphones with software versions earlier than VIE-L09C636B370
Description
The issue is related to insufficient input validation, which could be exploited by an attacker to tamper with air interface signaling messages and obtain some communication information.
Recommendations
For versions earlier than EVA-L09C432B383, update to EVA-L09C432B383 or later.
For versions earlier than EVA-L09C636B380, update to EVA-L09C636B380 or later.
For versions earlier than VIE-L09C432B370, update to VIE-L09C432B370 or later.
For versions earlier than VIE-L09C636B370, update to VIE-L09C636B370 or later.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei P9