Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHuaweiCVELIST:CVE-2017-17140
HistoryDec 06, 2017 - 12:00 a.m.

CVE-2017-17140

2017-12-0600:00:00
huawei
www.cve.org

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.0%

JSON

Huawei Enjoy 5s and Y6 Pro smartphones with software the versions before TAG-AL00C92B170; the versions before TIT-L01C576B121 have an information leak vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious application on the smart phone and the application can read some sensitive information in kernel memory which may cause sensitive information leak.

CNA Affected

[
  {
    "product": "Enjoy 5s; Y6 Pro",
    "vendor": "Huawei Technologies Co., Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "The versions before TAG-AL00C92B170"
      },
      {
        "status": "affected",
        "version": "The versions before TIT-L01C576B121"
      }
    ]
  }
]

Related

nvd 1
huawei 1
cve 1
prion 1
nvd
nvd
CVE-2017-17140
2018-03-05 19:29:00
huawei
huawei
Security Advisory - Information Leak Vulnerability in Some Huawei Smart Phones
2017-12-13 00:00:00
cve
cve
CVE-2017-17140
2018-03-05 19:29:00
prion
prion
Design/Logic Flaw
2018-03-05 19:29:00

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

29.0%

JSON
Related for CVELIST:CVE-2017-17140
nvd1huawei1cve1prion1