CVE-2017-17139

Summary

Huawei Mate 9 and Mate 9 pro smart phones with software the versions before MHA-AL00B 8.0.0.334(C00); the versions before LON-AL00B 8.0.0.334(C00) have a information leak vulnerability in the date service proxy implementation. An attacker may trick a user into installing a malicious application and application can exploit the vulnerability to get kernel date which may cause sensitive information leak.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.Mate 9; Mate 9 ProThe versions before MHA-AL00B 8.0.0.334(C00)affected
Huawei Technologies Co., Ltd.Mate 9; Mate 9 ProThe versions before LON-AL00B 8.0.0.334(C00)affected

Weaknesses

  • information leak

ADP Enrichment

CVE Program Container

Additional References

References