CVE-2017-8181

Published: Nov 22, 2017

Modified: Sep 16, 2024

PUBLISHED

Description

The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a arbitrary memory write vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	Nice-AL00	affected `Versions earlier than Nice-AL00C00B155`

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170919-01-mtk-en

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-8181

Description

Affected Products

References