CVE-2015-8088

Description

Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 before MT7-CL00C92B354 and P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, and GRA-UL10 before GRA-UL10C00B220 allows attackers to cause a denial of service (reboot) or execute arbitrary code via a crafted application.

Risk Information

Base Score

7.8

MODERATE

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.801

Associated Vulnerability

Vulnerability	OS Platform
Vulnerabilities CVE-2015-8088 ,CVE-2015-8306 are affected in p8_firmware gra-ul100	NCM
Multiple Vulnerabilities affected in p8_firmware gra-ul10	NCM
Multiple Vulnerabilities affected in p8_firmware gra-tl00	NCM
Vulnerabilities CVE-2015-8088 ,CVE-2015-8306 ,CVE-2017-2698 are affected in p8_firmware gra-cl100	NCM
Multiple Vulnerabilities affected in p8_firmware gra-cl10	NCM
Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-8088)	NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234