CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
23.4%
Mdapt Driver of Huawei MediaPad M3 BTV-W09C128B353CUSTC128D001; Mate 9 Pro versions earlier than 8.0.0.356(C00); P10 Plus versions earlier than 8.0.0.357(C00) has a buffer overflow vulnerability. The driver does not sufficiently validate the input, an attacker could trick the user to install a malicious application which would send crafted parameters to the driver. Successful exploit could cause a denial of service condition.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | mediapad_m3_firmware | btv-w09c128b353custc128d001 | cpe:2.3:o:huawei:mediapad_m3_firmware:btv-w09c128b353custc128d001:*:*:*:*:*:*:* |
huawei | mediapad_m3 | - | cpe:2.3:h:huawei:mediapad_m3:-:*:*:*:*:*:*:* |
huawei | mate_9_pro_firmware | * | cpe:2.3:o:huawei:mate_9_pro_firmware:*:*:*:*:*:*:*:* |
huawei | mate_9_pro | - | cpe:2.3:h:huawei:mate_9_pro:-:*:*:*:*:*:*:* |
huawei | p10_plus_firmware | * | cpe:2.3:o:huawei:p10_plus_firmware:*:*:*:*:*:*:*:* |
huawei | p10_plus | - | cpe:2.3:h:huawei:p10_plus:-:*:*:*:*:*:*:* |
huawei | mate_9_firmware | * | cpe:2.3:o:huawei:mate_9_firmware:*:*:*:*:*:*:*:* |
huawei | mate_9 | - | cpe:2.3:h:huawei:mate_9:-:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS
Percentile
23.4%