← Back

CVE-2015-8088

nvd nist
Published: Jan 12, 2016Modified: May 6, 2026

JSON object

Loading...
7.8
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 before MT7-CL00C92B354 and P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, and GRA-UL10 before GRA-UL10C00B220 allows attackers to cause a denial of service (reboot) or execute arbitrary code via a crafted application.

Affected (9)

Huawei
2 products
P8 Firmware
Mate 7 Firmware
Configuration A
5 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
P8 Firmware
Version gra-cl100
P8 Firmware
Version gra-cl10
P8 Firmware
Version gra-tl00
P8 Firmware
Version gra-ul100
P8 Firmware
Version gra-ul10
Running on/withPlatform Versions
Huawei
P8
All versions
Configuration B
4 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Huawei
Mate 7 Firmware
Version mt7-cl00
Mate 7 Firmware
Version mt7-tl00
Mate 7 Firmware
Version mt7-tl10
Mate 7 Firmware
Version mt7-ul00
Running on/withPlatform Versions
Huawei
Mate 7
All versions

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (4)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.