Описание
P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия до vie-al10c00b352 (исключая)
Одновременно
cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00061
Низкий
5.5 Medium
CVSS3
7.1 High
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system.
EPSS
Процентиль: 19%
0.00061
Низкий
5.5 Medium
CVSS3
7.1 High
CVSS2
Дефекты
CWE-20