Lucene search

Huawei TechnologiesHUAWEI-SA-20171125-01-BASEBAND

HistoryNov 25, 2017 - 12:00 a.m.

Security Advisory - Stack Overflow Vulnerability in Baseband Module of Some Huawei Smart Phones

2017-11-2500:00:00

Huawei Technologies

www.huawei.com

5.8 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

83.9%

JSON

The baseband modules of some Huawei smart phones have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker could exploit this vulnerability to perform a denial of service attack or remote code execution in baseband module. (Vulnerability ID: HWPSIRT-2017-11022)
This vulnerability has been assigned a CVE ID: CVE-2017-15311.
Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171125-01-baseband-en

Affected configurations

Vulners

Node

huaweihonor_5cMatchnem-al10c00b202

huaweihonor_6xMatchberlin-al10ac00b380

huaweihonor_6xMatchberlin-al20bc00b380

huaweihonor_7xMatchbond-al00cc00b182

huaweihonor_7xMatchbond-al10bc00b182

huaweihonor_8Matchprague-al00ac00b211

huaweihonor_8Matchprague-al00bc00b211

huaweihonor_8Matchprague-al00cc00b211

huaweihonor_v9Matchduke-al20c00b208

huaweihonor9Matchstanford-al00c00b201

huaweihonor9Matchstanford-al10c00b201

huaweihonor9Matchstanford-al20c00b201

huaweimaimang_6Matchrhone-al00c00b168

huaweimate_s_firmwareMatchalp-al00b

huaweimate_s_firmwareMatch8.0.0.125

huaweimate_9_proMatchbla-al00b

huaweimate_9_proMatch8.0.0.125

huaweimate_9_proMatchmha-al00b

huaweimate_9_proMatch8.0.0.334

huaweimate_9_proMatchlon-al00b

huaweimate_9_proMatch8.0.0.334

huaweinova_2Matchpicasso-al00c00b180

huaweinova_2_plusMatchbarca-al00c00b180

huaweip10Matchvictoria-al00a

huaweip10Match8.0.0.321

huaweip10Matchwarsaw-al00c00b231

huaweip10_plusMatchvicky-al00a

huaweip10_plusMatch8.0.0.321

CPENameOperatorVersion
honor 5ceqNEM-AL10C00B202
honor 6xeqBerlin-AL10AC00B380
honor 6xeqBerlin-AL20BC00B380
honor 7xeqBond-AL00CC00B182
honor 7xeqBond-AL10BC00B182
honor 8 liteeqPrague-AL00AC00B211
honor 8 liteeqPrague-AL00BC00B211
honor 8 liteeqPrague-AL00CC00B211
honor v9eqDuke-AL20C00B208
honor9eqStanford-AL00C00B201

Name	Operator	Version
honor 5c	eq	NEM-AL10C00B202
honor 6x	eq	Berlin-AL10AC00B380
honor 6x	eq	Berlin-AL20BC00B380
honor 7x	eq	Bond-AL00CC00B182
honor 7x	eq	Bond-AL10BC00B182
honor 8 lite	eq	Prague-AL00AC00B211
honor 8 lite	eq	Prague-AL00BC00B211
honor 8 lite	eq	Prague-AL00CC00B211
honor v9	eq	Duke-AL20C00B208
honor9	eq	Stanford-AL00C00B201

Rows per page:

1-10 of 281

5.8 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

8.8 High

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.01 Low

EPSS

Percentile

83.9%

JSON

Related for HUAWEI-SA-20171125-01-BASEBAND