7.8
CVE-2015-8682
- EPSS 0.07%
- Published 13.04.2016 14:59:04
- Last modified 12.04.2025 10:46:40
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The Video0 driver in Huawei P8 smartphones with software GRA-UL00 before GRA-UL00C00B350, GRA-UL10 before GRA-UL10C00B350, GRA-TL00 before GRA-TL00C01B350, GRA-CL00 before GRA-CL00C92B350, and GRA-CL10 before GRA-CL10C92B350 and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to obtain sensitive information from stack memory or cause a denial of service (system crash) via a crafted application, which triggers an invalid memory access.
Data is provided by the National Vulnerability Database (NVD)
Huawei ≫ Mate S Firmware Version <= crr-cl00c92b153
Huawei ≫ Mate S Firmware Version <= crr-tl00c01b153sp01
Huawei ≫ Mate S Firmware Version <= crr-ul00c00b153
Huawei ≫ P8 Firmware Version <= gra-cl00c92b230
Huawei ≫ P8 Firmware Version <= gra-cl10c92b230
Huawei ≫ P8 Firmware Version <= gra-tl00c01b230
Huawei ≫ P8 Firmware Version <= gra-ul00c00b230
Huawei ≫ P8 Firmware Version <= gra-ul10c00b230
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.07% | 0.223 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 6.1 | 1.8 | 4.2 |
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
|
| nvd@nist.gov | 7.8 | 8.6 | 7.8 |
AV:N/AC:M/Au:N/C:P/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.