CVE-2017-2706

Published: Nov 22, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

Mate 9 smartphones with software MHA-AL00AC00B125 have a directory traversal vulnerability in Push module. Since the system does not verify the file name during decompression, system directories are traversed. It could be exploited to cause the attacker to replace files and impact the service.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	Mate 9	affected `MHA-AL00AC00B125`

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170712-01-push-en

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-2706

Description

Affected Products

References