CVE-2017-17320
Description
Huawei Mate 9 Pro smartphones with software of LON-AL00BC00B139D, LON-AL00BC00B229, LON-L29DC721B188 have a memory double free vulnerability. The system does not manage the memory properly, that frees on the same memory address twice. An attacker tricks the user who has root privilege to install a crafted application, successful exploit could result in malicious code execution.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.108
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-17320 are affected in mate_9_pro_firmware lon-l29dc721b188 | NCM |
| Vulnerabilities CVE-2017-17320 ,CVE-2017-17324 are affected in mate_9_pro_firmware lon-al00bc00b229 | NCM |
| Vulnerabilities CVE-2017-17320 ,CVE-2017-17324 are affected in mate_9_pro_firmware lon-al00bc00b139d | NCM |
| Double Free Vulnerability (CVE-2017-17320) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234