CVE-2016-6179 - OpenCVE

The WiFi driver in Huawei Honor 6 smartphones with software H60-L01 before H60-L01C00B850, H60-L11 before H60-L11C00B850, H60-L21 before H60-L21C00B850, H60-L02 before H60-L02C00B850, H60-L12 before H60-L12C00B850, and H60-L03 before H60-L03C01B850 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application.

No CVSS v3.1

Attack Vector Local

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

Access Vector Local

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:M/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Huawei	Honor 6 Firmware Honor 6

Configuration 1 [-]

AND

OR	cpe:2.3:o:huawei:honor_6_firmware::::::::
	cpe:2.3:o:huawei:honor_6_firmware::::::::
	cpe:2.3:o:huawei:honor_6_firmware::::::::
	cpe:2.3:o:huawei:honor_6_firmware::::::::
	cpe:2.3:o:huawei:honor_6_firmware::::::::
	cpe:2.3:o:huawei:honor_6_firmware::::::::

cpe:2.3:h:huawei:honor_6:-:*:*:*:*:*:*:*

References

Link	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-smartphone-en	Vendor Advisory
http://www.securityfocus.com/bid/91773	Third Party Advisory VDB Entry

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2016-09-07T20:00:00

Updated: 2016-11-25T19:57:01

Reserved: 2016-07-07T00:00:00

Link: CVE-2016-6179

JSON object: View

NVD Information

Status : Analyzed

Published: 2016-09-07T20:59:02.920

Modified: 2019-05-30T14:31:22.080

Link: CVE-2016-6179

JSON object: View

Redhat Information

No data.

CWE

CWE-284

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-07-13T00:00:00", "descriptions": [{"lang": "en", "value": "The WiFi driver in Huawei Honor 6 smartphones with software H60-L01 before H60-L01C00B850, H60-L11 before H60-L11C00B850, H60-L21 before H60-L21C00B850, H60-L02 before H60-L02C00B850, H60-L12 before H60-L12C00B850, and H60-L03 before H60-L03C01B850 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-11-25T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "91773", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/91773"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-smartphone-en"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-6179", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The WiFi driver in Huawei Honor 6 smartphones with software H60-L01 before H60-L01C00B850, H60-L11 before H60-L11C00B850, H60-L21 before H60-L21C00B850, H60-L02 before H60-L02C00B850, H60-L12 before H60-L12C00B850, and H60-L03 before H60-L03C01B850 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "91773", "refsource": "BID", "url": "http://www.securityfocus.com/bid/91773"}, {"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-smartphone-en", "refsource": "CONFIRM", "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-smartphone-en"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-6179", "datePublished": "2016-09-07T20:00:00", "dateReserved": "2016-07-07T00:00:00", "dateUpdated": "2016-11-25T19:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:honor_6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E2F4FC49-714E-49CE-8D34-E9542E551AE9", "versionEndIncluding": "h60-l01c00b850", "versionStartIncluding": "h60-l01", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:honor_6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CCD63C7A-7372-4FDD-86D4-B9671996A204", "versionEndIncluding": "h60-l02c00b850", "versionStartIncluding": "h60-l02", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:honor_6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "29D64659-12CD-46E1-A067-44FABF145DFB", "versionEndIncluding": "h60-l03c01b850", "versionStartIncluding": "h60-l03", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:honor_6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "10F9EC18-E45F-41FC-BDD6-047877228851", "versionEndIncluding": "h60-l11c00b850", "versionStartIncluding": "h60-l11", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:honor_6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "71325F0E-D4E3-4B07-8728-558C5BB5A7E0", "versionEndIncluding": "h60-l12c00b850", "versionStartIncluding": "h60-l12", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:honor_6_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "91ED0F4A-32D9-4293-961D-CEEE695EAF0D", "versionEndIncluding": "h60-l21c00b850", "versionStartIncluding": "h60-l21", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:honor_6:-:*:*:*:*:*:*:*", "matchCriteriaId": "9FE24C63-66F2-4647-B32D-ADA1EAC7F23E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "The WiFi driver in Huawei Honor 6 smartphones with software H60-L01 before H60-L01C00B850, H60-L11 before H60-L11C00B850, H60-L21 before H60-L21C00B850, H60-L02 before H60-L02C00B850, H60-L12 before H60-L12C00B850, and H60-L03 before H60-L03C01B850 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application."}, {"lang": "es", "value": "El controlador WiFi en smartphones Huawei Honor 6 con software H60-L01 en versiones anteriores a H60-L01C00B850, H60-L11 en versiones anteriores a H60-L11C00B850, H60-L21 en versiones anteriores a H60-L21C00B850, H60-L02 en versiones anteriores a H60-L02C00B850, H60-L12 en versiones anteriores a H60-L12C00B850 y H60-L03 en versiones anteriores a H60-L03C01B850 permite a atacantes provocar una denegaci\u00f3n de servicio (ca\u00edda del sistema) u obtener privilegios a trav\u00e9s de una aplicaci\u00f3n manipulada."}], "id": "CVE-2016-6179", "lastModified": "2019-05-30T14:31:22.080", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.9, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.4, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.0, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.0, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2016-09-07T20:59:02.920", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160713-01-smartphone-en"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/91773"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}], "source": "nvd@nist.gov", "type": "Primary"}]}