CVE-2017-8169

Name of the Vulnerable Software and Affected Versions Huawei smart phones versions prior to VIE-L09C40B360

Description The issue is caused by a buffer overflow due to the lack of parameter validation. An attacker can trick a user into installing a malicious APP with root privilege, which can send a specific parameter to the smart phone, potentially causing the smartphone to restart or allowing arbitrary code execution.

Recommendations For versions prior to VIE-L09C40B360, update to version VIE-L09C40B360 or later to resolve the issue. As a temporary workaround, consider restricting the installation of APPs to minimize the risk of exploitation. Avoid using parameters that may trigger the buffer overflow until the issue is resolved.