7.1
CVE-2015-8679
- EPSS 0.06%
- Veröffentlicht 07.04.2016 20:59:02
- Zuletzt bearbeitet 12.04.2025 10:46:40
- Quelle cve@mitre.org
- Teams Watchlist Login
- Unerledigt Login
The Maxim_smartpa_dev driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allow attackers to cause a denial of service (system crash) via a crafted application, which triggers an invalid memory access.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Huawei ≫ Mate S Firmware Versioncrr-cl00
Huawei ≫ Mate S Firmware Versioncrr-tl00
Huawei ≫ Mate S Firmware Versioncrr-ul00
Huawei ≫ P8 Firmware Versiongra-cl00
Huawei ≫ P8 Firmware Versiongra-cl10
Huawei ≫ P8 Firmware Versiongra-tl00
Huawei ≫ P8 Firmware Versiongra-ul00
Huawei ≫ P8 Firmware Versiongra-ul10
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.06% | 0.185 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.5 | 1.8 | 3.6 |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.1 | 8.6 | 6.9 |
AV:N/AC:M/Au:N/C:N/I:N/A:C
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.