QwikSec

Security Database

CVE

CWE

Training

CVE-2017-8172

Published: Nov 22, 2017

Modified: Sep 17, 2024

PUBLISHED

Description

Isub service in P10 Plus and P10 smart phones with earlier than VKY-AL00C00B157 versions and earlier than VTR-AL00C00B157 versions has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a out-of-bounds array access that results in smart phone restart.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	P10 Plus,P10	affected `Earlier than VKY-AL00C00B157 versions, Earlier than VTR-AL00C00B157 versions`

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170628-01-isub-en

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.