Memory corruption

2017-11-2219:29:00

PRIOn knowledge base

www.prio-n.com

7.8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

31.6%

JSON

The boot loaders of P10 and P10 Plus Huawei mobile phones with software the versions before Victoria-L09AC605B162, the versions before Victoria-L29AC605B162, the versions before Vicky-L29AC605B162 have an arbitrary memory write vulnerability due to the lack of parameter validation. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause arbitrary memory writing in the next system reboot, causing continuous system reboot or arbitrary code execution.

CPENameOperatorVersion
p10_firmwareeq< victoria-l9ac605b162
p10_firmwareeq< victoria-l29ac605b162
p10_plus_firmwareeq< vicky-l29ac605b162
p8_lite_firmwareeq< ale-l21c113b566
p9_firmwareeq< eva-l9c432b391
p9_firmwareeq< eva-l9c576b386
p9_firmwareeq< eva-l9c605b390
p9_firmwareeq< eva-l9c635b387
p9_firmwareeq< eva-l9c636b388
p9_firmwareeq< eva-l19c10b390

Name	Operator	Version
p10_firmware	eq	< victoria-l9ac605b162
p10_firmware	eq	< victoria-l29ac605b162
p10_plus_firmware	eq	< vicky-l29ac605b162
p8_lite_firmware	eq	< ale-l21c113b566
p9_firmware	eq	< eva-l9c432b391
p9_firmware	eq	< eva-l9c576b386
p9_firmware	eq	< eva-l9c605b390
p9_firmware	eq	< eva-l9c635b387
p9_firmware	eq	< eva-l9c636b388
p9_firmware	eq	< eva-l19c10b390