VYPR
High severity7.8NVD Advisory· Published Mar 23, 2018· Updated Jun 17, 2026

CVE-2017-15325

CVE-2017-15325

Description

The Bdat driver of Prague smart phones with software versions earlier than Prague-AL00AC00B211, versions earlier than Prague-AL00BC00B211, versions earlier than Prague-AL00CC00B211, versions earlier than Prague-TL00AC01B211, versions earlier than Prague-TL10AC01B211 has integer overflow vulnerability due to the lack of parameter validation. An attacker tricks a user into installing a malicious APP and execute it as a specific privilege; the APP can then send a specific parameter to the driver of the smart phone, causing arbitrary code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: earlier than Prague-AL00AC00B211, earlier than Prague-AL00BC00B211, earlier than Prague-AL00CC00B211, earlier than Prague-TL00AC01B211, earlier than Prague-TL10AC01B211
  • Huawei Technologies Co., Ltd./Praguev5
    Range: Versions earlier than Prague-AL00AC00B211, Versions earlier than Prague-AL00BC00B211, Versions earlier than Prague-AL00CC00B211, Versions earlier than Prague-TL00AC01B211, Versions earlier than Prague-TL10AC01B211

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.