ID
VAR-201711-0217
CVE
CVE-2017-2701
TITLE
Huawei Mate 9 Vulnerabilities related to insufficient verification of data reliability in Japanese software
Trust: 0.8
sources:
JVNDB: JVNDB-2017-010600
DESCRIPTION
Mate 9 with software MHA-AL00AC00B125 has a denial of service (DoS) vulnerability. An attacker tricks a user into installing a malicious application. Since the system does not verify the broadcasting message from the application, it could be exploited to cause some functions of system unavailable. Huawei Mate 9 Software contains vulnerabilities related to insufficient validation of data reliability.Service operation interruption (DoS) There is a possibility of being put into a state. HuaweiMate9 is a smartphone from China's Huawei company
Trust: 2.25
sources:
NVD: CVE-2017-2701 //
JVNDB: JVNDB-2017-010600 //
CNVD: CNVD-2017-26777 //
VULHUB: VHN-110904
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2017-26777
AFFECTED PRODUCTS
| vendor: | huawei | model: | mate 9 | scope: | eq | version: | mha-al00ac00b125 | Trust: 2.4 |
| vendor: | huawei | model: | mate mha-al00ac00b125 | scope: | eq | version: | 9 | Trust: 0.6 |
sources:
CNVD: CNVD-2017-26777 //
JVNDB: JVNDB-2017-010600 //
CNNVD: CNNVD-201708-148 //
NVD: CVE-2017-2701
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
CNVD: CNVD-2017-26777 //
VULHUB: VHN-110904 //
JVNDB: JVNDB-2017-010600 //
CNNVD: CNNVD-201708-148 //
NVD: CVE-2017-2701
PROBLEMTYPE DATA
| problemtype: | CWE-345 | Trust: 1.9 |
sources:
VULHUB: VHN-110904 //
JVNDB: JVNDB-2017-010600 //
NVD: CVE-2017-2701
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-201708-148
TYPE
lack of information
Trust: 0.6
sources:
CNNVD: CNNVD-201708-148
CONFIGURATIONS
sources:
JVNDB: JVNDB-2017-010600
PATCH
| title: | huawei-sa-20170802-01-broadcasting | url: | http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170802-01-broadcasting-en | Trust: 0.8 |
| title: | HuaweiMate9DoS vulnerability patch | url: | https://www.cnvd.org.cn/patchInfo/show/102214 | Trust: 0.6 |
| title: | Huawei Mate 9 Security vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=74820 | Trust: 0.6 |
sources:
CNVD: CNVD-2017-26777 //
JVNDB: JVNDB-2017-010600 //
CNNVD: CNNVD-201708-148
EXTERNAL IDS
| db: | NVD | id: | CVE-2017-2701 | Trust: 3.1 |
| db: | JVNDB | id: | JVNDB-2017-010600 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201708-148 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2017-26777 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-110904 | Trust: 0.1 |
sources:
CNVD: CNVD-2017-26777 //
VULHUB: VHN-110904 //
JVNDB: JVNDB-2017-010600 //
CNNVD: CNNVD-201708-148 //
NVD: CVE-2017-2701
REFERENCES
| url: | http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170802-01-broadcasting-en | Trust: 1.7 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2701 | Trust: 0.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2017-2701 | Trust: 0.8 |
| url: | http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20170802-01-broadcasting-cn | Trust: 0.6 |
sources:
CNVD: CNVD-2017-26777 //
VULHUB: VHN-110904 //
JVNDB: JVNDB-2017-010600 //
CNNVD: CNNVD-201708-148 //
NVD: CVE-2017-2701
CREDITS
Huawei
Trust: 0.6
sources:
CNNVD: CNNVD-201708-148
SOURCES
| db: | CNVD | id: | CNVD-2017-26777 |
| db: | VULHUB | id: | VHN-110904 |
| db: | JVNDB | id: | JVNDB-2017-010600 |
| db: | CNNVD | id: | CNNVD-201708-148 |
| db: | NVD | id: | CVE-2017-2701 |
LAST UPDATE DATE
2024-11-23T22:07:09.143000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2017-26777 | date: | 2017-09-15T00:00:00 |
| db: | VULHUB | id: | VHN-110904 | date: | 2017-12-08T00:00:00 |
| db: | JVNDB | id: | JVNDB-2017-010600 | date: | 2017-12-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-201708-148 | date: | 2017-12-26T00:00:00 |
| db: | NVD | id: | CVE-2017-2701 | date: | 2024-11-21T03:24:00.713 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2017-26777 | date: | 2017-09-15T00:00:00 |
| db: | VULHUB | id: | VHN-110904 | date: | 2017-11-22T00:00:00 |
| db: | JVNDB | id: | JVNDB-2017-010600 | date: | 2017-12-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-201708-148 | date: | 2017-08-02T00:00:00 |
| db: | NVD | id: | CVE-2017-2701 | date: | 2017-11-22T19:29:00.630 |