Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2016-8774

EPSS 0.04% · P11
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-8774

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The HIFI driver in Huawei Mate 8 phones with software versions before NXT-AL10C00B386, versions before NXT-CL00C92B386, versions before NXT-DL00C17B386, versions before NXT-TL00C01B386; Mate S phones with software Versions before CRR-CL00C92B368, Versions before CRR-CL20C92B368, Versions before CRR-TL00C01B368, Versions before CRR-UL00C00B368, Versions before CRR-UL20C00B368; P8 phones with software Versions before GRA-TL00C01B366, Versions before GRA-CL00C92B366, Versions before GRA-CL10C92B366, Versions before GRA-UL00C00B366, Versions before GRA-UL10C00B366; and P9 phones with software Versions before EVA-AL10C00B190, Versions before EVA-DL10C00B190, Versions before EVA-TL10C00B190, Versions before EVA-CL10C00B190 allows attackers to get root privilege or crash the system or execute arbitrary code, related to a buffer overflow.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Huawei产品缓冲区溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Huawei Mate 8等都是中国华为(Huawei)公司的智能手机。 多款Huawei产品中的HIFI驱动程序存在缓冲区溢出漏洞。本地攻击者可通过构造恶意的参数利用该漏洞以root权限执行任意代码,也可能造成拒绝服务(系统重启)。以下产品和版本受到影响:Huawei Mate 8 NXT-AL10C00B386之前的版本,NXT-CL00C92B386之前的版本,NXT-DL00C17B386之前的版本,NXT-TL00C01B386之前的版本;Mate S CRR-CL00C92B368之前的版本,
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-Mate 8,Mate S,P8,P9 Versions before NXT-AL10C00B386,Versions before NXT-CL00C92B386,Versions before NXT-DL00C17B386,Versions before NXT-TL00C01B386,Versions before CRR-CL00C92B368,Versions before CRR-CL20C92B368,Versions before CRR-TL00C01B368,Versions be Mate 8,Mate S,P8,P9 Versions before NXT-AL10C00B386,Versions before NXT-CL00C92B386,Versions before NXT-DL00C17B386,Versions before NXT-TL00C01B386,Versions before CRR-CL00C92B368,Versions before CRR-CL20C92B368,Versions before CRR-TL00C01B368,Versions be -

II. Public POCs for CVE-2016-8774

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2016-8774

登录查看更多情报信息。

Same Patch Batch · n/a · 2017-04-02 · 176 CVEs total

CVE-2017-2436Apple macOS Sierra IOFireWireAVC 安全漏洞
CVE-2017-2426Apple macOS Sierra iBooks 安全漏洞
CVE-2017-2427Apple macOS Sierra Bluetooth 安全漏洞
CVE-2017-2428多款Apple产品HTTPProtocol 安全漏洞
CVE-2017-2429Apple macOS Sierra FinderKit 安全漏洞
CVE-2017-2430多款Apple产品Audio 缓冲区错误漏洞
CVE-2017-2431Apple macOS Sierra CoreMedia 缓冲区错误漏洞
CVE-2017-2432多款Apple产品ImageIO 缓冲区错误漏洞
CVE-2017-2433Apple iOS和Safari WebKit组件安全漏洞
CVE-2017-2434Apple iOS HomeKit组件安全漏洞
CVE-2017-2435多款Apple产品CoreText 缓冲区错误漏洞
CVE-2017-2441多款Apple产品libc++abi 安全漏洞
CVE-2017-2446多款Apple产品WebKit 安全漏洞
CVE-2017-2445多款Apple产品WebKit 安全漏洞
CVE-2017-2444多款Apple产品CoreGraphics组件安全漏洞
CVE-2017-2443Apple macOS Sierra Intel Graphics Driver 安全漏洞
CVE-2017-2442Apple iOS和Safari WebKit JavaScript Bindings组件安全漏洞
CVE-2017-2439多款Apple产品FontParser 安全漏洞
CVE-2017-2437Apple macOS Sierra IOFireWireAVC 安全漏洞
CVE-2017-2438Apple macOS Sierra AppleRAID 安全漏洞

Showing top 20 of 176 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: n/a

V. Comments for CVE-2016-8774

No comments yet

Leave a comment