Lucene search

Huawei TechnologiesHUAWEI-SA-20171125-01-BASEBAND

HistoryNov 25, 2017 - 12:00 a.m.

Security Advisory - Stack Overflow Vulnerability in Baseband Module of Some Huawei Smart Phones

2017-11-2500:00:00

Huawei Technologies

www.huawei.com

CVSS2

5.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.011

Percentile

84.7%

JSON

The baseband modules of some Huawei smart phones have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker could exploit this vulnerability to perform a denial of service attack or remote code execution in baseband module. (Vulnerability ID: HWPSIRT-2017-11022)
This vulnerability has been assigned a CVE ID: CVE-2017-15311.
Huawei has released software updates to fix this vulnerability. This advisory is available at the following link:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171125-01-baseband-en

Affected configurations

Vulners

Node

huaweihonor_5c_firmwareMatchnem-al10c00b202

huaweihonor_6x_firmwareMatchberlin-al10ac00b380

huaweihonor_6x_firmwareMatchberlin-al20bc00b380

huaweihonor_6_firmwareMatchbond-al00cc00b182

huaweihonor_6_firmwareMatchbond-al10bc00b182

huaweihonor_8_lite_firmwareMatchprague-al00ac00b211

huaweihonor_8_lite_firmwareMatchprague-al00bc00b211

huaweihonor_8_lite_firmwareMatchprague-al00cc00b211

huaweihonor_v9_firmwareMatchduke-al20c00b208

huaweihonor9_firmwareMatchstanford-al00c00b201

huaweihonor9_firmwareMatchstanford-al10c00b201

huaweihonor9_firmwareMatchstanford-al20c00b201

huaweihonor_6_firmwareMatchrhone-al00c00b168

huaweimate_10_firmwareMatchalp-al00b

huaweimate_10_firmwareMatch8.0.0.125

huaweimate_10_pro_firmwareMatchbla-al00b

huaweimate_10_pro_firmwareMatch8.0.0.125

huaweimate_9_firmwareMatchmha-al00b

huaweimate_9_firmwareMatch8.0.0.334

huaweimate_9_pro_firmwareMatchlon-al00b

huaweimate_9_pro_firmwareMatch8.0.0.334

huaweinova_2_firmwareMatchpicasso-al00c00b180

huaweinova_2_plus_firmwareMatchbarca-al00c00b180

huaweip10_firmwareMatchvictoria-al00a

huaweip10_firmwareMatch8.0.0.321

huaweip10_lite_firmwareMatchwarsaw-al00c00b231android

huaweip10_plus_firmwareMatchvicky-al00a

huaweip10_plus_firmwareMatch8.0.0.321

VendorProductVersionCPE
huaweihonor_5c_firmwarenem-al10c00b202cpe:2.3:o:huawei:honor_5c_firmware:nem-al10c00b202:*:*:*:*:*:*:*
huaweihonor_6x_firmwareberlin-al10ac00b380cpe:2.3:o:huawei:honor_6x_firmware:berlin-al10ac00b380:*:*:*:*:*:*:*
huaweihonor_6x_firmwareberlin-al20bc00b380cpe:2.3:o:huawei:honor_6x_firmware:berlin-al20bc00b380:*:*:*:*:*:*:*
huaweihonor_6_firmwarebond-al00cc00b182cpe:2.3:o:huawei:honor_6_firmware:bond-al00cc00b182:*:*:*:*:*:*:*
huaweihonor_6_firmwarebond-al10bc00b182cpe:2.3:o:huawei:honor_6_firmware:bond-al10bc00b182:*:*:*:*:*:*:*
huaweihonor_8_lite_firmwareprague-al00ac00b211cpe:2.3:o:huawei:honor_8_lite_firmware:prague-al00ac00b211:*:*:*:*:*:*:*
huaweihonor_8_lite_firmwareprague-al00bc00b211cpe:2.3:o:huawei:honor_8_lite_firmware:prague-al00bc00b211:*:*:*:*:*:*:*
huaweihonor_8_lite_firmwareprague-al00cc00b211cpe:2.3:o:huawei:honor_8_lite_firmware:prague-al00cc00b211:*:*:*:*:*:*:*
huaweihonor_v9_firmwareduke-al20c00b208cpe:2.3:o:huawei:honor_v9_firmware:duke-al20c00b208:*:*:*:*:*:*:*
huaweihonor9_firmwarestanford-al00c00b201cpe:2.3:a:huawei:honor9_firmware:stanford-al00c00b201:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	honor_5c_firmware	nem-al10c00b202	cpe:2.3:o:huawei:honor_5c_firmware:nem-al10c00b202:::::::*
huawei	honor_6x_firmware	berlin-al10ac00b380	cpe:2.3:o:huawei:honor_6x_firmware:berlin-al10ac00b380:::::::*
huawei	honor_6x_firmware	berlin-al20bc00b380	cpe:2.3:o:huawei:honor_6x_firmware:berlin-al20bc00b380:::::::*
huawei	honor_6_firmware	bond-al00cc00b182	cpe:2.3:o:huawei:honor_6_firmware:bond-al00cc00b182:::::::*
huawei	honor_6_firmware	bond-al10bc00b182	cpe:2.3:o:huawei:honor_6_firmware:bond-al10bc00b182:::::::*
huawei	honor_8_lite_firmware	prague-al00ac00b211	cpe:2.3:o:huawei:honor_8_lite_firmware:prague-al00ac00b211:::::::*
huawei	honor_8_lite_firmware	prague-al00bc00b211	cpe:2.3:o:huawei:honor_8_lite_firmware:prague-al00bc00b211:::::::*
huawei	honor_8_lite_firmware	prague-al00cc00b211	cpe:2.3:o:huawei:honor_8_lite_firmware:prague-al00cc00b211:::::::*
huawei	honor_v9_firmware	duke-al20c00b208	cpe:2.3:o:huawei:honor_v9_firmware:duke-al20c00b208:::::::*
huawei	honor9_firmware	stanford-al00c00b201	cpe:2.3:a:huawei:honor9_firmware:stanford-al00c00b201:::::::*

Rows per page:

1-10 of 281

CVSS2

5.8

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:A/AC:L/Au:N/C:P/I:P/A:P

CVSS3

8.8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.011

Percentile

84.7%

JSON

Related for HUAWEI-SA-20171125-01-BASEBAND