The CameraISP driver of some Huawei smart phones with software of versions earlier than Prague-AL00AC00B205,versions earlier than Prague-AL00BC00B205,versions earlier than Prague-AL00CC00B205,versions earlier than Prague-TL00AC01B205,versions earlier than Prague-TL10AC01B205 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP, the APP can send a specific parameter to the CameraISP driver of the smart phone, causing system reboot.
Advisories
Source ID Title
EUVD EUVD EUVD-2017-17164 The CameraISP driver of some Huawei smart phones with software of versions earlier than Prague-AL00AC00B205,versions earlier than Prague-AL00BC00B205,versions earlier than Prague-AL00CC00B205,versions earlier than Prague-TL00AC01B205,versions earlier than Prague-TL10AC01B205 has a buffer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP, the APP can send a specific parameter to the CameraISP driver of the smart phone, causing system reboot.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: huawei

Published:

Updated: 2024-09-17T01:56:26.934Z

Reserved: 2017-04-25T00:00:00

Link: CVE-2017-8202

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Deferred

Published: 2017-11-22T19:29:05.083

Modified: 2025-04-20T01:37:25.860

Link: CVE-2017-8202

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.