PT-2017-18157 · Huawei · Huawei P9
Yonggang Guo
·
Published
2017-11-22
·
Updated
2017-12-12
·
CVE-2017-8148
CVSS v2.0
5.4
Medium
| Vector | AV:N/AC:H/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Huawei P9 smartphone with software versions prior to EVA-AL10C00B389
Description
The issue is related to a denial of service (DoS) vulnerability in the audio driver. An attacker can exploit this by tricking a user into installing a malicious application, which causes a race condition. This condition leads to a null pointer access during the application's access to shared resources, resulting in a system reboot.
Recommendations
For versions prior to EVA-AL10C00B389, update the software to version EVA-AL10C00B389 or later to resolve the issue.
Fix
Race Condition
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei P9