HIGH🇬🇧 English

CVE-2017-17320

CVSS 7.8v3.0pub. 2018-03-20upd. 2024-11-21

Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could result in malicious code execution.

oryginał EN
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Huawei Mate 9 Pro

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 9 Pro Firmware

    OS
    Huawei
    lon-al00bc00b139dlon-al00bc00b229lon-l29dc721b188
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
RCE
CWE
Referencje

Powiązane podatności

CVE-2017-17173HIGH7.8ten sam produkt

Due to insufficient parameters verification GPU driver of Mate 9 Pro Huawei smart phones with the versions bef...

CVE-2017-17324HIGH7.8ten sam produkt

Huawei Mate 9 Pro smartphones with software LON-AL00BC00B139D; LON-AL00BC00B229 have an integer overflow vulne...

CVE-2017-17225HIGH8.8ten sam produkt

The Near Field Communication (NFC) module in Huawei Mate 9 Pro mobile phones with the versions before LON-AL00...

CVE-2017-15311HIGH8.8ten sam produkt

The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-...

CVE-2017-15316HIGH7.8ten sam produkt

The GPU driver of Mate 9 Huawei smart phones with software before MHA-AL00B 8.0.0.334(C00) and Mate 9 Pro Huaw...