CVE-2017-17224

Summary

Some Huawei smart phones with versions earlier than Harry-AL00C 9.1.0.206(C00E205R3P1) have a null pointer dereference vulnerability. An attacker crafts specific packets and sends to the affected product to exploit this vulnerability. Successful exploitation may cause the affected phone abnormal.

Affected Software

VendorProductVersion RangeStatus
HuaweiHG655mcustomized versionsaffected

Weaknesses

  • command injection

ADP Enrichment

CVE Program Container

Additional References

References