CVE-2017-2713 — MEDIUM (5.4)

Q: How severe is CVE-2017-2713?

CVE-2017-2713 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2017-2713?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei P9 Firmware, Huawei P9.

Vulnerability Description

HUAWEI P9 smartphones with software versions earlier before EVA-L09C432B383, versions earlier before EVA-L09C636B380, versions earlier before VIE-L09C432B370, versions earlier before VIE-L29C636B370 have an insufficient input validation vulnerability. An attacker could exploit this vulnerability to tamper with air interface signaling messages and obtain some communication information.

CVSS Score

5.4

MEDIUM

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

LOW

Integrity

LOW

Availability

NONE

Affected Products

Vendor	Product	Versions
Huawei	P9 Firmware	< eva-l09c432b383
Huawei	P9	-

Related Weaknesses (CWE)

CWE-20

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-01-smartphVendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-01-smartphVendor Advisory

FAQ

What is CVE-2017-2713?

CVE-2017-2713 is a vulnerability with a CVSS score of 5.4 (MEDIUM). HUAWEI P9 smartphones with software versions earlier before EVA-L09C432B383, versions earlier before EVA-L09C636B380, versions earlier before VIE-L09C432B370, versions earlier before VIE-L29C636B370 h...

How severe is CVE-2017-2713?

CVE-2017-2713 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-2713?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei P9 Firmware, Huawei P9.