CVE-2017-8144

Published: Nov 22, 2017 Last Modified: Apr 20, 2025 EU-VD ID: EUVD-2017-17106 Aliases: GSD-2017-8144

ExploitDB:

Other exploit source:

Google Dorks:

MEDIUM 5,5

Source: [email protected]

Attack Vector: local

Attack Complexity: low

Privileges Required: none

User Interaction: required

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

HIGH 7,1

Source: [email protected]

Access Vector: network

Access Complexity: medium

Authentication: none

Confidentiality: none

Integrity: none

Availability: complete

Description

AI Translation Available

Honor 5A,Honor 8 Lite,Mate9,Mate9 Pro,P10,P10 Plus Huawei smartphones with software the versions before CAM-L03C605B143CUSTC605D003,the versions before Prague-L03C605B161,the versions before Prague-L23C605B160,the versions before MHA-AL00C00B225,the versions before LON-AL00C00B225,the versions before VTR-AL00C00B167,the versions before VTR-TL00C01B167,the versions before VKY-AL00C00B167,the versions before VKY-TL00C01B167 have a resource exhaustion vulnerability due to configure setting. An attacker tricks a user into installing a malicious application, the application may turn on the device flash-light and rapidly drain the device battery.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0007

Percentile

0,2th

Updated

EPSS Score Trend (Last 90 Days)

920

Improper Restriction of Power Consumption

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Availability

Potential Impacts:

Dos: Resource Consumption (Other) Dos: Crash, Exit, Or Restart

Applicable Platforms

Technologies: Mobile

View CWE Details

Operating System

P10 Firmware by Huawei

Product Information

Vendor Huawei

Product P10 Firmware

Version Range Affected

To vtr-tl00c01b167 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p10_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Honor 8 Lite Firmware by Huawei

Product Information

Vendor Huawei

Product Honor 8 Lite Firmware

Version Range Affected

To prague-l03c605b161 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:honor_8_lite_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Mate 9 Pro Firmware by Huawei

Product Information

Vendor Huawei

Product Mate 9 Pro Firmware

Version Range Affected

To lon-al00c00b225 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:mate_9_pro_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

P10 Plus Firmware by Huawei

Product Information

Vendor Huawei

Product P10 Plus Firmware

Version Range Affected

To vky-tl00c01b167 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p10_plus_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

P10 Firmware by Huawei

Product Information

Vendor Huawei

Product P10 Firmware

Version Range Affected

To vtr-al00c00b167 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p10_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

P10 Plus Firmware by Huawei

Product Information

Vendor Huawei

Product P10 Plus Firmware

Version Range Affected

To vky-al00c00b167 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:p10_plus_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Mate 9 Firmware by Huawei

Product Information

Vendor Huawei

Product Mate 9 Firmware

Version Range Affected

To mha-al00c00b225 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:mate_9_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Honor 5A Firmware by Huawei

Product Information

Vendor Huawei

Product Honor 5A Firmware

Version Range Affected

To cam-l03c605b143custc605d003 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:honor_5a_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Operating System

Honor 8 Lite Firmware by Huawei

Product Information

Vendor Huawei

Product Honor 8 Lite Firmware

Version Range Affected

To prague-l23c605b160 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:o:huawei:honor_8_lite_firmware:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

http://www.huawei.com/en/psirt/security-advisories/huawei-s…

Vendor Advisory

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170725-01-smartp…

http://www.huawei.com/en/psirt/security-advisories/huawei-s…

Vendor Advisory

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170725-01-smartp…

CVE-2017-8144

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Improper Restriction of Power Consumption

Common Consequences

Applicable Platforms

P10 Firmware by Huawei

Product Information

Honor 8 Lite Firmware by Huawei

Product Information

Mate 9 Pro Firmware by Huawei

Product Information

P10 Plus Firmware by Huawei

Product Information

P10 Firmware by Huawei

Product Information

P10 Plus Firmware by Huawei

Product Information

Mate 9 Firmware by Huawei

Product Information

Honor 5A Firmware by Huawei

Product Information

Honor 8 Lite Firmware by Huawei

Product Information

Iscriviti alla newsletter