CVE-2017-15322
MEDIUMHuawei Baggio-L03A Firmware - Denial of Service via NFC Message Input Validation
Title source: llmDescription
Some Huawei smartphones with software of BGO-L03C158B003CUSTC158D001 and BGO-L03C331B009CUSTC331D001 have a DoS vulnerability due to insufficient input validation. An attacker could exploit this vulnerability by sending specially crafted NFC messages to the target device. Successful exploit could make a service crash.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171108-01-nfc-en
Scores
CVSS v3
6.5
EPSS
0.0005
EPSS Percentile
15.6%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (4)
huawei/baggio-l03a_firmware
bgo-l03c158b003custc158d001
huawei/baggio-l03a_firmware
bgo-l03c331b009custc331d001
Huawei Technologies Co., Ltd./Baggio-L03A
BGO-L03C158B003CUSTC158D001
Huawei Technologies Co., Ltd./Baggio-L03A
BGO-L03C331B009CUSTC331D001
Published
Dec 22, 2017
Tracked Since
Feb 18, 2026