CVE-2017-8175

Summary

The Bastet of some Huawei mobile phones with software earlier than Vicky-AL00AC00B167 versions, earlier than Victoria-AL00AC00B167 versions, earlier than Warsaw-AL00C00B191 versions has an insufficient input validation vulnerability due to the lack of parameter validation. An attacker may trick a user into installing a malicious APP. The APP can modify specific parameter to cause system reboot.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.Vicky-AL00A,Victoria-AL00A,Warsaw-AL00Earlier than Vicky-AL00AC00B167 versions,Earlier than Victoria-AL00AC00B167 versions,Earlier than Warsaw-AL00C00B191 versionsaffected

Weaknesses

  • Insufficient Input Validation

ADP Enrichment

CVE Program Container

Additional References

References