9.3
CVE-2015-8088
- EPSS 0.8%
- Published 12.01.2016 19:59:07
- Last modified 12.04.2025 10:46:40
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 before MT7-CL00C92B354 and P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, and GRA-UL10 before GRA-UL10C00B220 allows attackers to cause a denial of service (reboot) or execute arbitrary code via a crafted application.
Data is provided by the National Vulnerability Database (NVD)
Huawei ≫ P8 Firmware Versiongra-cl10
Huawei ≫ P8 Firmware Versiongra-cl100
Huawei ≫ P8 Firmware Versiongra-tl00
Huawei ≫ P8 Firmware Versiongra-ul10
Huawei ≫ P8 Firmware Versiongra-ul100
Huawei ≫ Mate 7 Firmware Versionmt7-cl00
Huawei ≫ Mate 7 Firmware Versionmt7-tl00
Huawei ≫ Mate 7 Firmware Versionmt7-tl10
Huawei ≫ Mate 7 Firmware Versionmt7-ul00
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.8% | 0.731 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 9.3 | 8.6 | 10 |
AV:N/AC:M/Au:N/C:C/I:C/A:C
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.