Name of the Vulnerable Software and Affected Versions Huawei Mate 9 Pro (affected versions not specified)

Description The issue is related to the lack of input validation in the SMC handler for the GLOBAL CMD ID NEED LOAD APP command in the TEE OS Trusted Core operating system. This could allow a local attacker to cause a denial of service, modify program behavior by changing TRUE/FALSE flags, or compromise the integrity of critical data stored in physical memory by sending a specially crafted SMC request.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.