QwikSec

Security Database

CVE

CWE

Training

CVE-2017-8203

Published: Nov 22, 2017

Modified: Sep 17, 2024

PUBLISHED

Description

The Bastet Driver of Nova 2 Plus,Nova 2 Huawei smart phones with software of Versions earlier than BAC-AL00C00B173,Versions earlier than PIC-AL00C00B173 has a use after free (UAF) vulnerability. An attacker can convince a user to install a malicious application which has a high privilege to exploit this vulnerability, Successful exploitation may cause arbitrary code execution.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	Nova 2 Plus,Nova 2	affected `Versions earlier than BAC-AL00C00B173,Versions earlier than PIC-AL00C00B173`

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170927-01-smartphone-en

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.