Home

CVE-2017-2711

Description

P9 Plus smartphones with software earlier than VIE-AL10C00B352 versions have an input validation vulnerability in the touchscreen Driver. An attacker can tricks a user into installing a malicious application on the smart phone, and send given parameter to smart phone to crash the system.

Risk Information

Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.137

Associated Vulnerability

VulnerabilityOS Platform
Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 are affected in p9_plus_firmware vie-al10bc00b386NCM
Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 are affected in p9_plus_firmware vie-al10bc00b356NCM
Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 are affected in p9_plus_firmware vie-al10bc00b353NCM
Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 ,CVE-2017-8140 are affected in p9_plus_firmware vie-al10NCM
Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 ,CVE-2017-8140 are affected in p9_plus_firmware eva-l09c636b388NCM
Improper Input Validation Vulnerability (CVE-2017-2711)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234