Lucene search

[email protected]CVE-2016-6183

HistorySep 07, 2016 - 7:28 p.m.

CVE-2016-6183

2016-09-0719:28:07

CWE-284

[email protected]

web.nvd.nist.gov

huawei

honor 4c

camera driver

dos

privilege escalation

cve-2016-6183

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.7%

JSON

The Camera driver in Huawei Honor 4C smartphones with software CHM-UL00C00 before CHM-UL00C00B564, CHM-TL00C01 before CHM-TL00C01B564, and CHM-TL00C00 before CHM-TL00HC00B564 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2016-6180, CVE-2016-6181, CVE-2016-6182, and CVE-2016-6184.

Affected configurations

NVD

Node

huaweihonor_4c_firmwareMatchchm-tl00c01_b535

huaweihonor_4c_firmwareMatchchm-tl00c01b556

huaweihonor_4c_firmwareMatchchm-tl00hc00_b535

huaweihonor_4c_firmwareMatchchm-tl00hc00b556

huaweihonor_4c_firmwareMatchchm-ul00c00b535

huaweihonor_4c_firmwareMatchchm-ul00c00b556

AND

huaweihonor_4cMatch-

CPENameOperatorVersion
huawei:honor_4c_firmwarehuawei honor 4c firmwareeqchm-tl00c01_b535
huawei:honor_4c_firmwarehuawei honor 4c firmwareeqchm-tl00c01b556
huawei:honor_4c_firmwarehuawei honor 4c firmwareeqchm-tl00hc00_b535
huawei:honor_4c_firmwarehuawei honor 4c firmwareeqchm-tl00hc00b556
huawei:honor_4c_firmwarehuawei honor 4c firmwareeqchm-ul00c00b535
huawei:honor_4c_firmwarehuawei honor 4c firmwareeqchm-ul00c00b556

CPE	Name	Operator	Version
huawei:honor_4c_firmware	huawei honor 4c firmware	eq	chm-tl00c01_b535
huawei:honor_4c_firmware	huawei honor 4c firmware	eq	chm-tl00c01b556
huawei:honor_4c_firmware	huawei honor 4c firmware	eq	chm-tl00hc00_b535
huawei:honor_4c_firmware	huawei honor 4c firmware	eq	chm-tl00hc00b556
huawei:honor_4c_firmware	huawei honor 4c firmware	eq	chm-ul00c00b535
huawei:honor_4c_firmware	huawei honor 4c firmware	eq	chm-ul00c00b556

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20160716-01-smartphone-en

Social References

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

7 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

30.7%

JSON

Related for CVE-2016-6183

cve4 prion5 cvelist5 nvd5 huawei1