HIGH🇬🇧 English

CVE-2018-7993

CVSS 7.8v3.0pub. 2018-07-31upd. 2024-11-21

HUAWEI Mate 10 smartphones with versions earlier than ALP-AL00 8.1.0.311 have a use after free vulnerability on mediaserver component. An attacker tricks the user install a malicious application, which make the software to reference memory after it has been freed. Successful exploit could cause execution of arbitrary code.

oryginał EN
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Huawei Mate 10

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate 10 Firmware

    OS
    Huawei
    < alp-al00_8.1.0.311
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Memory
CWE
Referencje

Powiązane podatności

CVE-2017-17227HIGH7.8ten sam produkt

GPU driver in Huawei Mate 10 smart phones with the versions before ALP-L09 8.0.0.120(C212); The versions befor...

CVE-2017-15311HIGH8.8ten sam produkt

The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-...

CVE-2020-9119MEDIUM6.2ten sam produkt

There is a privilege escalation vulnerability on some Huawei smart phones due to design defects. The attacker ...

CVE-2020-1809MEDIUM4.6ten sam produkt

HUAWEI Mate 10 smartphones with versions earlier than 10.0.0.143(C00E143R2P4) have an information disclosure v...

CVE-2019-5264MEDIUM4.6ten sam produkt

There is an information disclosure vulnerability in certain Huawei smartphones (Mate 10;Mate 10 Pro;Honor V10;...