CVE-2017-2701

Опубликовано: 22 нояб. 2017

Источник: nvd

CVSS3: 3.3

CVSS2: 4.3

EPSS Низкий

Описание

Mate 9 with software MHA-AL00AC00B125 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application. Since the system does not verify the broadcasting message from the application, it could be exploited to cause some functions of system unavailable.

Ссылки

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170802-01-broadcasting-en
Mitigation
Vendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170802-01-broadcasting-en
Mitigation
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:mate_9_firmware:mha-al00ac00b125:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_9:-:*:*:*:*:*:*:*

EPSS

Процентиль: 11%

0.00039

Низкий

3.3 Low

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-345

Связанные уязвимости

GHSA-27qc-3c4c-hwfw