CVE-2017-2734
Description
P9 Plus smartphones with software versions earlier before VIE-AL10BC00B386 have a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, and the application can send given parameter to specific interface, which make a large number of memory allocation and the smart phone will be crash for memory exhaustion.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.069
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 are affected in p9_plus_firmware vie-al10bc00b356 | NCM |
| Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 are affected in p9_plus_firmware vie-al10bc00b353 | NCM |
| Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 ,CVE-2017-8140 are affected in p9_plus_firmware vie-al10 | NCM |
| Vulnerabilities CVE-2017-2711 ,CVE-2017-2731 ,CVE-2017-2734 ,CVE-2017-8140 are affected in p9_plus_firmware eva-l09c636b388 | NCM |
| Uncontrolled Resource Consumption Vulnerability (CVE-2017-2734) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234