CVE-2017-8172

Summary

Isub service in P10 Plus and P10 smart phones with earlier than VKY-AL00C00B157 versions and earlier than VTR-AL00C00B157 versions has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a out-of-bounds array access that results in smart phone restart.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.P10 Plus,P10Earlier than VKY-AL00C00B157 versions, Earlier than VTR-AL00C00B157 versionsaffected

Weaknesses

  • DoS

ADP Enrichment

CVE Program Container

Additional References

References