CVE-2017-8186

Description

The Bastet of some Huawei mobile phones with software of earlier than MHA-AL00BC00B231 versions has a DOS vulnerability due to the lack of parameter validation. An attacker may trick a user into installing a malicious APP. The APP can modify specific parameter to cause system reboot.

Affected products

• Huawei Technologies Co., Ltd. / MHA-AL00AEarlier than MHA-AL00BC00B231 versions – Earlier than MHA-AL00BC00B231 versions

References

• VENDOR_ADVISORYhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171018-01-dos-en