CVE-2017-2697
Severity CVSS v4.0:
Pending analysis
Type:
CWE-119
Buffer Errors
Publication date:
22/11/2017
Last modified:
20/04/2025
Description
The goldeneye driver in NMO-L31C432B120 and earlier versions,NEM-L21C432B100 and earlier versions,NEM-L51C432B120 and earlier versions,KNT-AL10C746B160 and earlier versions,VNS-L21C185B142 and earlier versions,CAM-L21C10B130 and earlier versions,CAM-L21C185B141 and earlier versions has buffer overflow vulnerability. An attacker with the root privilege of the Android system can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system or escalate privilege.
Impact
Base Score 3.x
7.80
Severity 3.x
HIGH
Base Score 2.0
9.30
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:huawei:gt3_firmware:*:*:*:*:*:*:*:* | nmo-l31c432b120 (including) | |
| cpe:2.3:h:huawei:gt3:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:honor_5c_firmware:*:*:*:*:*:*:*:* | nem-l51c432b120 (including) | |
| cpe:2.3:h:huawei:honor_5c:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:knt_firmware:*:*:*:*:*:*:*:* | knt-al10c746b160 (including) | |
| cpe:2.3:h:huawei:knt:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:p9_lite_firmware:*:*:*:*:*:*:*:* | vns-l21c185b142 (including) | |
| cpe:2.3:h:huawei:p9_lite:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:y6ii_firmware:*:*:*:*:*:*:*:* | cam-l21c10b130 (including) | |
| cpe:2.3:h:huawei:y6ii:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:honor_5c_firmware:*:*:*:*:*:*:*:* | nem-l51c432b120 (including) | |
| cpe:2.3:h:huawei:honor_5c:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:huawei:y6ii_firmware:*:*:*:*:*:*:*:* | cam-l21c185b141 (including) | |
| cpe:2.3:h:huawei:y6ii:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page