Description
The camera driver of MTK platform in Huawei smart phones with software of versions earlier than Nice-AL00C00B155 has a arbitrary memory write vulnerability.Due to the insufficient input verification, an attacker tricks a user into installing a malicious application which has special privilege and sends a specific parameter to the driver of the smart phone, causing privilege escalation.
Affected products
- Huawei Technologies Co., Ltd. / Nice-AL00Versions earlier than Nice-AL00C00B155 – Versions earlier than Nice-AL00C00B155