CVE-2017-15311 : The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart ph

The baseband modules of Mate 10, Mate 10 Pro, Mate 9, Mate 9 Pro Huawei smart phones with software before ALP-AL00 8.0.0.120(SP2C00), before BLA-AL00 8.0.0.120(SP2C00), before MHA-AL00B 8.0.0.334(C00), and before LON-AL00B 8.0.0.334(C00) have a stack overflow vulnerability due to the lack of parameter validation. An attacker could send malicious packets to the smart phones within radio range by special wireless device, which leads stack overflow when the baseband module handles these packets. The attacker could exploit this vulnerability to perform a denial of service attack or remote code execution in baseband module.

Published 2017-12-22 17:29:13

Updated 2018-01-09 17:22:47

Source Huawei Technologies

View at NVD, CVE.org

Vulnerability category: OverflowExecute codeDenial of service

Products affected by CVE-2017-15311

Huawei » Mate 9 Firmware
Versions before (<) mha-al00b_8.0.0.334\(c00\)
cpe:2.3:o:huawei:mate_9_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Huawei » Mate 9 » Version: N/A
Huawei » Mate 9 Pro Firmware
Versions before (<) lon-al00b_8.0.0.334\(c00\)
cpe:2.3:o:huawei:mate_9_pro_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Huawei » Mate 9 Pro » Version: N/A
Huawei » Mate 10 Pro Firmware
Versions before (<) bla-al00_8.0.0.120\(sp2c00\)
cpe:2.3:o:huawei:mate_10_pro_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Huawei » Mate 10 Pro » Version: N/A
Huawei » Mate 10 Firmware
Versions before (<) alp-al00_8.0.0.120\(sp2c00\)
cpe:2.3:o:huawei:mate_10_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Huawei » Mate 10 » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2017-15311

EPSS FAQ

0.12%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 28 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2017-15311

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.8	MEDIUM	AV:A/AC:L/Au:N/C:P/I:P/A:P	6.5	6.4	NIST
Access Vector: Adjacent Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
8.8	HIGH	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H	2.8	5.9	NIST
Attack Vector: Adjacent Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2017-15311

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2017-15311

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171125-01-baseband-en

Security Advisory - Stack Overflow Vulnerability in Baseband Module of Some Huawei Smart Phones
Vendor Advisory

Jump to

Vulnerability Details : CVE-2017-15311

Products affected by CVE-2017-15311

Exploit prediction scoring system (EPSS) score for CVE-2017-15311

CVSS scores for CVE-2017-15311

CWE ids for CVE-2017-15311

References for CVE-2017-15311