NVD

CVE-2017-17171 Detail

Modified

This CVE record has been updated after NVD enrichment efforts were completed. Enrichment data supplied by the NVD may require amendment due to these changes.

Description

Some Huawei smart phones have the denial of service (DoS) vulnerability due to the improper processing of malicious parameters. An attacker may trick a target user into installing a malicious APK and launch attacks using a pre-installed app with specific permissions. Successful exploit could allow the app to send specific parameters to the smart phone driver, which will result in system restart.

Metrics

NVD enrichment efforts reference publicly available information to associate vector strings. CVSS information contributed by other sources is also displayed.

CVSS 4.0 Severity and Vector Strings:

NIST: NVD

N/A

NVD assessment not yet provided.

CVSS 3.x Severity and Vector Strings:

NIST: NVD

Base Score: 4.2 MEDIUM

Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H

CVSS 2.0 Severity and Vector Strings:

National Institute of Standards and Technology

NIST: NVD

Base Score: 6.3 MEDIUM

Vector: (AV:N/AC:M/Au:S/C:N/I:N/A:C)

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone	Vendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone	Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone-en	Vendor Advisory

Weakness Enumeration

CWE-ID	CWE Name	Source
CWE-20	Improper Input Validation	NIST

Known Affected Software Configurations Switch to CPE 2.2

Configuration 1 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-al10c00b593
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 2 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-cl00c92b593
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 3 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-dl00c17b593
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 4 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-l09c636b598a
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 5 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-l09c185b583
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 6 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-l09c432b582
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 7 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-l09c605b585custc605d590
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 8 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-l29c10b583
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 9 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-l29c185b585
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 10 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxt-l29c636b594a
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 11 ( hide )

cpe:2.3:o:huawei:mate_8_firmware:::::::: Show Matching CPE(s)	Up to (excluding) nxtl00c01b593
Running on/with
cpe:2.3:h:huawei:mate_8:-:::::::* Show Matching CPE(s)

Configuration 12 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-al00c00b398
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 13 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-al10c00b398
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 14 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-cl00c92b398
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 15 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-dl00c17b398
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 16 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l09c185b391
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 17 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l09c432b395
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 18 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l09c464b383
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 19 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l09c605b392
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 20 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (including) eva-l09c636b388
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 21 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l19c10b394
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 22 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l19c432b392
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 23 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l19c605b390
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 24 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l19c636b393
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 25 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-l29c636b389
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 26 ( hide )

cpe:2.3:o:huawei:p9_firmware:::::::: Show Matching CPE(s)	Up to (excluding) eva-tl00c01b398
Running on/with
cpe:2.3:h:huawei:p9:-:::::::* Show Matching CPE(s)

Configuration 27 ( hide )

cpe:2.3:o:huawei:p9_plus_firmware:::::::: Show Matching CPE(s)	Up to (excluding) vie-l09c318b182
Running on/with
cpe:2.3:h:huawei:p9_plus:-:::::::* Show Matching CPE(s)

Configuration 28 ( hide )

cpe:2.3:o:huawei:p9_plus_firmware:::::::: Show Matching CPE(s)	Up to (excluding) vie-l09c432b380
Running on/with
cpe:2.3:h:huawei:p9_plus:-:::::::* Show Matching CPE(s)

Configuration 29 ( hide )

cpe:2.3:o:huawei:p9_plus_firmware:::::::: Show Matching CPE(s)	Up to (excluding) vie-l09c576b180
Running on/with
cpe:2.3:h:huawei:p9_plus:-:::::::* Show Matching CPE(s)

Configuration 30 ( hide )

cpe:2.3:o:huawei:p9_plus_firmware:::::::: Show Matching CPE(s)	Up to (excluding) vie-l29c605b370
Running on/with
cpe:2.3:h:huawei:p9_plus:-:::::::* Show Matching CPE(s)

Configuration 31 ( hide )

cpe:2.3:o:huawei:p9_plus_firmware:::::::: Show Matching CPE(s)	Up to (excluding) vie-l29c636b388
Running on/with
cpe:2.3:h:huawei:p9_plus:-:::::::* Show Matching CPE(s)

Denotes Vulnerable Software
Are we missing a CPE here? Please let us know.

Change History

3 change records found show changes

Initial Analysis by NIST 7/27/2018 9:36:25 AM

Action	Type	Old Value	New Value
Added	CVSS V3		AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H
Added	CVSS V2		(AV:N/AC:M/Au:S/C:N/I:N/A:C)
Added	CWE		CWE-20
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-al10c00b593 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-cl00c92b593 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-dl00c17b593 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-l09c185b583 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-l09c432b582 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-l09c605b585custc605d590 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-l09c636b598a OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-l29c10b583 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-l29c185b585 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxt-l29c636b594a OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:mate_8_firmware::::::::* versions up to (excluding) nxtl00c01b593 OR cpe:2.3:h:huawei:mate_8:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-al00c00b398 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-al10c00b398 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-cl00c92b398 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-dl00c17b398 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l09c185b391 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l09c432b395 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l09c464b383 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l09c605b392 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l19c10b394 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l19c432b392 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l19c605b390 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l19c636b393 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-l29c636b389 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (excluding) eva-tl00c01b398 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_firmware::::::::* versions up to (including) eva-l09c636b388 OR cpe:2.3:h:huawei:p9:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_plus_firmware::::::::* versions up to (excluding) vie-l09c318b182 OR cpe:2.3:h:huawei:p9_plus:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_plus_firmware::::::::* versions up to (excluding) vie-l09c432b380 OR cpe:2.3:h:huawei:p9_plus:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_plus_firmware::::::::* versions up to (excluding) vie-l09c576b180 OR cpe:2.3:h:huawei:p9_plus:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_plus_firmware::::::::* versions up to (excluding) vie-l29c605b370 OR cpe:2.3:h:huawei:p9_plus:-:::::::*
Added	CPE Configuration		AND OR cpe:2.3:o:huawei:p9_plus_firmware::::::::* versions up to (excluding) vie-l29c636b388 OR cpe:2.3:h:huawei:p9_plus:-:::::::*
Added	Reference		https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone-en [Vendor Advisory]
Changed	Reference Type	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone No Types Assigned	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180530-01-smartphone Vendor Advisory
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism

Quick Info

CVE Dictionary Entry:
CVE-2017-17171
NVD Published Date:
06/01/2018
NVD Last Modified:
11/20/2024
Source:
Huawei Technologies

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

CVE-2017-17171 Detail

Description

Metrics

References to Advisories, Solutions, and Tools

Weakness Enumeration

Known Affected Software Configurations Switch to CPE 2.2

CPEs loading, please wait.

Change History

CVE Modified by CVE 11/20/2024 10:17:38 PM

CVE Modified by Huawei Technologies 5/14/2024 12:28:59 AM

Initial Analysis by NIST 7/27/2018 9:36:25 AM

Quick Info