CVE-2017-2706

Summary

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.Mate 9MHA-AL00AC00B125affected

Weaknesses

  • Directory Traversal

ADP Enrichment

CVE Program Container

Additional References

References