CVE-2017-17306

Published: Mar 20, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

Some Huawei Smartphones with software of VNS-L21AUTC555B141, VNS-L21C10B160, VNS-L21C66B160, VNS-L21C703B140 have an array out-of-bounds read vulnerability. Due to the lack verification of array, an attacker tricks a user into installing a malicious application, and the application can exploit the vulnerability and make attacker to read out of bounds of array and possibly cause the device abnormal.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	VNS-L21	affected `VNS-L21AUTC555B141, VNS-L21C10B160, VNS-L21C66B160, VNS-L21C703B140`

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180314-01-arrayover-en

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-17306

Description

Affected Products

References