PT-2017-9792 · Huawei · Huawei P8 Lite+2

Nick Stephens

Published

2017-04-02

Updated

2017-04-07

CVE-2016-8762

CVSS v3.1

5.0

Medium

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Huawei P9 versions prior to EVA-AL10C00B352 Huawei P9 Lite versions prior to VNS-L21C185B130 Huawei P8 Lite versions prior to ALE-L02C636B150

Description The issue is related to an input validation problem in the TrustZone driver. This allows attackers to cause the system to restart.

Recommendations For Huawei P9 versions prior to EVA-AL10C00B352, update to version EVA-AL10C00B352 or later. For Huawei P9 Lite versions prior to VNS-L21C185B130, update to version VNS-L21C185B130 or later. For Huawei P8 Lite versions prior to ALE-L02C636B150, update to version ALE-L02C636B150 or later.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-8762

Affected Products

Huawei P8 Lite

Huawei P9

Huawei P9 Lite

PT-2017-9792 · Huawei · Huawei P8 Lite+2

CVE-2016-8762

Weakness Enumeration

Related Identifiers

Affected Products

References · 4