CVE-2017-17171 - OpenCVE

Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart.

No CVSS v3.1

Attack Vector Local

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction Required

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

AV:N/AC:M/Au:S/C:N/I:N/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Huawei	P9 Plus Firmware Mate 8 P9 Mate 8 Firmware P9 Firmware P9 Plus

Configuration 1 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*

References

Link	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone	Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone-en	Vendor Advisory

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: huawei

Published: 2018-06-01T14:00:00

Updated: 2018-06-01T13:57:02

Reserved: 2017-12-04T00:00:00

Link: CVE-2017-17171

JSON object: View

NVD Information

Status : Analyzed

Published: 2018-06-01T14:29:00.207

Modified: 2018-07-27T13:36:24.563

Link: CVE-2017-17171

JSON object: View

Redhat Information

No data.

CWE

CWE-20

{"containers": {"cna": {"affected": [{"product": "HUAWEI Mate 8; HUAWEI P9; HUAWEI P9 Plus", "vendor": "Huawei Technologies Co., Ltd.", "versions": [{"status": "affected", "version": "HUAWEI Mate 8 Versions earlier than NXT-AL10C00B592"}, {"status": "affected", "version": "Versions earlier than NXT-CL00C92B592"}, {"status": "affected", "version": "Versions earlier than NXT-DL00C17B592"}, {"status": "affected", "version": "Versions earlier than NXT-L09AC636B220"}, {"status": "affected", "version": "Versions earlier than NXT-L09C185B582"}, {"status": "affected", "version": "Versions earlier than NXT-L09C432B581"}, {"status": "affected", "version": "Versions earlier than NXT-L09C605B585"}, {"status": "affected", "version": "Versions earlier than NXT-L29C10B580"}, {"status": "affected", "version": "Versions earlier than NXT-L29C185B582"}, {"status": "affected", "version": "Versions earlier than NXT-L29C636B589"}, {"status": "affected", "version": "Versions earlier than NXT-TL00C01B592"}, {"status": "affected", "version": "HUAWEI P9 Versions earlier than EVA-AL00C00B398"}, {"status": "affected", "version": "Versions earlier than EVA-AL10C00B398"}, {"status": "affected", "version": "Versions earlier than EVA-CL00C92B398"}, {"status": "affected", "version": "Versions earlier than EVA-DL00C17B398"}, {"status": "affected", "version": "Versions earlier than EVA-L09C185B391"}, {"status": "affected", "version": "Versions earlier than EVA-L09C432B395"}, {"status": "affected", "version": "Versions earlier than EVA-L09C464B383"}, {"status": "affected", "version": "Versions earlier than EVA-L09C605B392"}, {"status": "affected", "version": "Versions earlier than EVA-L09C635B391"}, {"status": "affected", "version": "Versions earlier than EVA-L09C636B388"}, {"status": "affected", "version": "Versions earlier than EVA-L19C10B394"}, {"status": "affected", "version": "Versions earlier than EVA-L19C432B392"}, {"status": "affected", "version": "Versions earlier than EVA-L19C605B390"}, {"status": "affected", "version": "Versions earlier than EVA-L19C636B393"}, {"status": "affected", "version": "Versions earlier than EVA-L29C636B389"}, {"status": "affected", "version": "Versions earlier than EVA-TL00C01B398"}, {"status": "affected", "version": "HUAWEI P9 Plus Versions earlier than VIE-L09C318B182"}, {"status": "affected", "version": "Versions earlier than VIE-L09C432B380"}, {"status": "affected", "version": "Versions earlier than VIE-L09C576B180"}, {"status": "affected", "version": "Versions earlier than VIE-L29C605B370"}, {"status": "affected", "version": "Versions earlier than VIE-L29C636B388"}]}], "datePublic": "2018-05-30T00:00:00", "descriptions": [{"lang": "en", "value": "Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart."}], "problemTypes": [{"descriptions": [{"description": "DoS", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-06-01T13:57:02", "orgId": "25ac1063-e409-4190-8079-24548c77ea2e", "shortName": "huawei"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@huawei.com", "ID": "CVE-2017-17171", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "HUAWEI Mate 8; HUAWEI P9; HUAWEI P9 Plus", "version": {"version_data": [{"version_value": "HUAWEI Mate 8 Versions earlier than NXT-AL10C00B592"}, {"version_value": "Versions earlier than NXT-CL00C92B592"}, {"version_value": "Versions earlier than NXT-DL00C17B592"}, {"version_value": "Versions earlier than NXT-L09AC636B220"}, {"version_value": "Versions earlier than NXT-L09C185B582"}, {"version_value": "Versions earlier than NXT-L09C432B581"}, {"version_value": "Versions earlier than NXT-L09C605B585"}, {"version_value": "Versions earlier than NXT-L29C10B580"}, {"version_value": "Versions earlier than NXT-L29C185B582"}, {"version_value": "Versions earlier than NXT-L29C636B589"}, {"version_value": "Versions earlier than NXT-TL00C01B592"}, {"version_value": "HUAWEI P9 Versions earlier than EVA-AL00C00B398"}, {"version_value": "Versions earlier than EVA-AL10C00B398"}, {"version_value": "Versions earlier than EVA-CL00C92B398"}, {"version_value": "Versions earlier than EVA-DL00C17B398"}, {"version_value": "Versions earlier than EVA-L09C185B391"}, {"version_value": "Versions earlier than EVA-L09C432B395"}, {"version_value": "Versions earlier than EVA-L09C464B383"}, {"version_value": "Versions earlier than EVA-L09C605B392"}, {"version_value": "Versions earlier than EVA-L09C635B391"}, {"version_value": "Versions earlier than EVA-L09C636B388"}, {"version_value": "Versions earlier than EVA-L19C10B394"}, {"version_value": "Versions earlier than EVA-L19C432B392"}, {"version_value": "Versions earlier than EVA-L19C605B390"}, {"version_value": "Versions earlier than EVA-L19C636B393"}, {"version_value": "Versions earlier than EVA-L29C636B389"}, {"version_value": "Versions earlier than EVA-TL00C01B398"}, {"version_value": "HUAWEI P9 Plus Versions earlier than VIE-L09C318B182"}, {"version_value": "Versions earlier than VIE-L09C432B380"}, {"version_value": "Versions earlier than VIE-L09C576B180"}, {"version_value": "Versions earlier than VIE-L29C605B370"}, {"version_value": "Versions earlier than VIE-L29C636B388"}]}}]}, "vendor_name": "Huawei Technologies Co., Ltd."}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "DoS"}]}]}, "references": {"reference_data": [{"name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone", "refsource": "CONFIRM", "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone"}]}}}}, "cveMetadata": {"assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e", "assignerShortName": "huawei", "cveId": "CVE-2017-17171", "datePublished": "2018-06-01T14:00:00", "dateReserved": "2017-12-04T00:00:00", "dateUpdated": "2018-06-01T13:57:02", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "905EEB31-9199-45DA-9707-97CA3D24248C", "versionEndExcluding": "nxt-al10c00b593", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9923FC00-4B0B-403A-B641-47CF1F414897", "versionEndExcluding": "nxt-cl00c92b593", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F48E0240-9154-4144-9B68-2B350727BD83", "versionEndExcluding": "nxt-dl00c17b593", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "151EB2CE-A996-4FA8-8C42-B5BAB4EC6968", "versionEndExcluding": "nxt-l09c636b598a", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F43B3E59-1E12-499E-9367-963068C96F4E", "versionEndExcluding": "nxt-l09c185b583", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "77182E39-EBC4-472A-8C61-954A50E0A481", "versionEndExcluding": "nxt-l09c432b582", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "298DCBD1-45DA-42F9-B2E6-58791DF440D6", "versionEndExcluding": "nxt-l09c605b585custc605d590", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8ED6C569-061E-4BD8-96E1-E5C0AF042FDC", "versionEndExcluding": "nxt-l29c10b583", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5064CD25-C8C6-4AE9-8225-E8383F20AA22", "versionEndExcluding": "nxt-l29c185b585", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CCCD3A0A-EF4D-4116-A740-0CBBCC238FD6", "versionEndExcluding": "nxt-l29c636b594a", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:mate_8_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "08807CFB-61C1-42CD-974F-2059F253B0DD", "versionEndExcluding": "nxtl00c01b593", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:mate_8:-:*:*:*:*:*:*:*", "matchCriteriaId": "541130D9-3327-4991-A7AB-29AA3B37861C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DCEFBA79-B38F-4282-9042-5CCA4941324F", "versionEndExcluding": "eva-al00c00b398", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "252DD1ED-A685-4586-BAAD-B58587AC0779", "versionEndExcluding": "eva-al10c00b398", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E9BB4220-2B80-48CC-926C-CD67B4A99776", "versionEndExcluding": "eva-cl00c92b398", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F968BC60-5D73-4230-9879-8E6E659ABA14", "versionEndExcluding": "eva-dl00c17b398", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F2FD0823-23D6-4C07-A413-39440A239901", "versionEndExcluding": "eva-l09c185b391", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6235D596-51CF-4D0E-80F1-C7DB059EC597", "versionEndExcluding": "eva-l09c432b395", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AE83C73F-3A2A-4606-BC89-30D00186A868", "versionEndExcluding": "eva-l09c464b383", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5617EB95-DF52-4BA0-883C-CEE5EB83720B", "versionEndExcluding": "eva-l09c605b392", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "00645D3A-13BF-4C89-B9AC-87852EDF444C", "versionEndIncluding": "eva-l09c636b388", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B16A2326-3CBD-4A77-92B3-9D3E7CA5691B", "versionEndExcluding": "eva-l19c10b394", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "EEACF9EC-012B-4A61-BA89-36BC3975A7AF", "versionEndExcluding": "eva-l19c432b392", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "08B08602-B43E-4C14-A0CF-7BCD1F8C7C4F", "versionEndExcluding": "eva-l19c605b390", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F3F0E218-3843-4B29-BDB8-3F96C8207994", "versionEndExcluding": "eva-l19c636b393", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D2F10C27-327A-42F0-96C9-8663B6EA5660", "versionEndExcluding": "eva-l29c636b389", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "39FC0DF7-E01B-43E5-816F-E549707A91FC", "versionEndExcluding": "eva-tl00c01b398", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*", "matchCriteriaId": "B1E734BC-513F-4FF6-B4AB-46A3AD8FA9BA", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "75AE4F1B-36F9-4524-BC3E-449354A633B4", "versionEndExcluding": "vie-l09c318b182", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*", "matchCriteriaId": "8604D307-4355-4426-A043-F9AD507190D0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "EA1645EB-7CF9-4950-AB39-3DE5F9C23307", "versionEndExcluding": "vie-l09c432b380", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*", "matchCriteriaId": "8604D307-4355-4426-A043-F9AD507190D0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "627FD3D9-40DD-441F-8ABA-1A2A6DCC0BAF", "versionEndExcluding": "vie-l09c576b180", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*", "matchCriteriaId": "8604D307-4355-4426-A043-F9AD507190D0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BD7CF8A7-4EBA-4083-9E6D-6ABE018EA22C", "versionEndExcluding": "vie-l29c605b370", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*", "matchCriteriaId": "8604D307-4355-4426-A043-F9AD507190D0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "10CE62B4-B8C4-4F9E-9278-B75FAB53177A", "versionEndExcluding": "vie-l29c636b388", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:huawei:p9_plus:-:*:*:*:*:*:*:*", "matchCriteriaId": "8604D307-4355-4426-A043-F9AD507190D0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart."}, {"lang": "es", "value": "Algunos smartphones Huawei tienen una vulnerabilidad de denegaci\u00f3n de servicio (DoS) debido al procesamiento incorrecto de par\u00e1metros maliciosos. Un atacante podr\u00eda enga\u00f1ar a un usuario objetivo para que descargar un APK malicioso e inicie ataques mediante una aplicaci\u00f3n preinstalada con permisos espec\u00edficos. Su explotaci\u00f3n con \u00e9xito podr\u00eda permitir que la aplicaci\u00f3n env\u00ede par\u00e1metros espec\u00edficos al controlador del smartphone, lo que resultar\u00e1 en un reinicio del sistema."}], "id": "CVE-2017-17171", "lastModified": "2018-07-27T13:36:24.563", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 6.3, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:S/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 4.2, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 0.6, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-06-01T14:29:00.207", "references": [{"source": "psirt@huawei.com", "tags": ["Vendor Advisory"], "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone"}, {"source": "nvd@nist.gov", "tags": ["Vendor Advisory"], "url": "https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone-en"}], "sourceIdentifier": "psirt@huawei.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}