CVE-2017-8180

Summary

The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a buffer overflow vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.Nice-AL00Versions earlier than Nice-AL00C00B155affected

Weaknesses

  • buffer overflow

ADP Enrichment

CVE Program Container

Additional References

References