CVE-2016-8775

MEDIUM

Huawei NEM - Buffer Overflow

Title source: llm

Description

Touch Panel (TP) driver in Huawei NEM phones with software Versions before NEM-AL10C00B130, Versions before NEM-UL10C17B160, Versions before NEM-UL10C00B160, Versions before NEM-TL00C01B160 allows attackers to get root privilege or crash the system or execute arbitrary code, related to a buffer overflow.

References (2)

[Vendor Advisory] http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161123-03-smartphone-en

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/94506

Scores

CVSS v3 6.7

EPSS 0.0004

EPSS Percentile 10.4%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-119

Status published

Affected Products (5)

huawei/nem-al10_firmware

huawei/nem-l51_firmware

huawei/nem-l21_firmware

huawei/nem-l22_firmware

n/a/NEM Versions before NEM-AL10C00B130,Versions before NEM-UL10C17B160,Versions before NEM-UL10C00B160,Versions before NEM-TL00C01B160, < NEM Versions before NEM-AL10C00B130,Versions before NEM-UL10C17B160,Versions before NEM-UL10C00B160

Timeline

Published Apr 02, 2017

Tracked Since Feb 18, 2026