The vulnerability of the getLoginInformation function at address 0x175798 in the SMC handler for the GLOBAL_CMD_ID_OPEN_SESSION function of the TEE OS in the Huawei Mate 9 Pro mobile phone’s microprogramming system. This vulnerability allows an attacker to cause a service failure or to read the virtual memory of the TEE OS at arbitrary addresses.
The vulnerability of the getLoginInformation function at address 0x175798 in the SMC handler for the GLOBALCMDIDOPENSESSION function in the TEE OS Trusted Core of the Huawei Mate 9 Pro mobile phone’s microprogramming system is related to the lack of validation for the incoming physical address...