Name of the Vulnerable Software and Affected Versions Huawei Mate 9 Pro (affected versions not specified)

Description The issue is related to a file named TEEOS.img, specifically at offset 0x158608, in the SMC handler for the GLOBAL CMD ID LOAD SECURE APP command of the TEE OS Trusted Core operating system. This concern is associated with the dereferencing of an untrusted pointer. An attacker, acting locally, could potentially exploit this to cause a denial of service, modify program operation algorithms (by altering TRUE/FALSE flags), or compromise the integrity of critical data stored in physical memory. This could be achieved by crafting a special SMC request.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.