CVE-2017-2709

MEDIUM

HiGame < 7.3.0 and SkyTone < 8.1.1 - Denial of Service via Malformed Packet Input

Title source: llm

Description

HiGame with software earlier than 7.3.0 versions, SkyTone with software earlier than 8.1.1 versions have a DoS Vulnerability. An attacker tricks a user into installing a malicious application on the smart phone, the attacker can send malformed packets to the device. Due to the lack of adequate input validation of APPs, which causes the APPs Denial of Service.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170913-01-appdos-en

Scores

CVSS v3 5.5

EPSS 0.0008

EPSS Percentile 22.8%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Details

CWE

CWE-20

Status published

Products (3)

huawei/higame < 7.3.0

huawei/skytone < 8.1.1

Huawei Technologies Co., Ltd./HiGame, SkyTone HiGame Earlier than 7.3.0 versions, SkyTone Earlier than 8.1.1 versions

Published Nov 22, 2017

Tracked Since Feb 18, 2026