← back
CVE-2017-8169

CVE-2017-8169

EPSS 1.0%
Huawei smart phones with software earlier than VIE-L09C40B360 versions have a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP which has the root privilege; the APP can send a specific parameter to the smart phone, causing the smartphone restart or arbitrary code execution.
Affected products
Huawei Technologies Co., Ltd. · VIE-L09

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171025-01-overflow-en