CVE-2017-8159

Summary

Some Huawei smartphones with software AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB-W09C233B012 have a type confusion vulnerability. The program initializes a variable using one type, but it later accesses that variable using a type that is different with the original type when do certain register operation. Successful exploit could result in buffer overflow then may cause malicious code execution.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.Agassi-L09HN,Agassi-W09HN,Kobe-L09AHN,Kobe-W09CHN,AGS-L09C233B019,AGS-W09C233B019,KOB-L09C233B017,KOB-W09C233B012affected

Weaknesses

  • Type Confusion

ADP Enrichment

CVE Program Container

Additional References

References