7.1

CVE-2016-8279

The video driver in Huawei Mate S smartphones with software CRR-TL00 before CRR-TL00C01B362, CRR-UL20 before CRR-UL20C00B362, CRR-CL00 before CRR-CL00C92B362, and CRR-CL20 before CRR-CL20C92B362; P8 smartphones with software GRA-TL00 before GRA-TL00C01B366, GRA-UL00 before GRA-UL00C00B366, GRA-UL10 before GRA-UL10C00B366, and GRA-CL00 before GRA-CL00C92B366; and Honor 6 and Honor 6 Plus smartphones with software before 6.9.16 allows attackers to cause a denial of service (device reboot) via a crafted application.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HuaweiP8 Firmware Versiongra-cl00
   HuaweiP8 Version-
HuaweiP8 Firmware Versiongra-tl00
   HuaweiP8 Version-
HuaweiP8 Firmware Versiongra-ul00
   HuaweiP8 Version-
HuaweiP8 Firmware Versiongra-ul10
   HuaweiP8 Version-
HuaweiMate S Firmware Versioncrr-cl00
   HuaweiMate S Version-
HuaweiMate S Firmware Versioncrr-cl20
   HuaweiMate S Version-
HuaweiMate S Firmware Versioncrr-tl00
   HuaweiMate S Version-
HuaweiMate S Firmware Versioncrr-ul20
   HuaweiMate S Version-
HuaweiHonor6 Firmware Version <= 6.9
   HuaweiHonor6 Version-
   HuaweiHonor6 Plus Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.05% 0.132
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvd@nist.gov 7.1 8.6 6.9
AV:N/AC:M/Au:N/C:N/I:N/A:C
CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

http://www.securityfocus.com/bid/93096
Third Party Advisory
VDB Entry