CVE-2017-2729
Description
The boot loaders in Honor 5A smart phones with software Versions earlier than CAM-TL00C01B193,Versions earlier than CAM-TL00HC00B193,Versions earlier than CAM-UL00C00B193 have a buffer overflow vulnerability. An attacker with the root privilege of an Android system may trick a user into installing a malicious APP. The APP can modify specific data to cause buffer overflow in the next system reboot, causing continuous system reboot or arbitrary code execution.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.17
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-2729 are affected in honor_5a_firmware cam-l21c636b245 | NCM |
| Vulnerabilities CVE-2017-2729 are affected in honor_5a_firmware cam-l21c432b210 | NCM |
| Vulnerabilities CVE-2017-2729 are affected in honor_5a_firmware cam-l21c223b133 | NCM |
| Vulnerabilities CVE-2017-2729 are affected in honor_5a_firmware cam-l21c185b156 | NCM |
| Vulnerabilities CVE-2017-2729 are affected in honor_5a_firmware cam-l21c10b145 | NCM |
| Vulnerabilities CVE-2017-2729 are affected in honor_5a_firmware cam-l03c605b143custc605d008 | NCM |
| Vulnerabilities CVE-2017-2729 are affected in honor_5a_firmware cam-l03c605b143custc605d003 | NCM |
| Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2017-2729) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234