CVE-2018-7993
Description
HUAWEI Mate 10 smartphones with versions earlier than ALP-AL00 8.1.0.311 have a use after free vulnerability on mediaserver component. An attacker tricks the user install a malicious application, which make the software to reference memory after it has been freed. Successful exploit could cause execution of arbitrary code.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.165
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities affected in mate_10_firmware 10.0.0.143(c00e143r2p4) | NCM |
| Multiple Vulnerabilities affected in mate_10_firmware 9.0.0.177(c185e2r1p12t8) | NCM |
| Multiple Vulnerabilities affected in mate_10_firmware 9.0.0.167(c00e85r2p20t8) | NCM |
| Multiple Vulnerabilities affected in mate_10_firmware 9.0.0.159(c636e2r1p12t8) | NCM |
| Multiple Vulnerabilities affected in mate_10_firmware 9.0.0.159(c432e4r1p9t8) | NCM |
| Use After Free Vulnerability (CVE-2018-7993) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234