CVE-2017-15347
Description
Huawei Mate 9 Pro mobile phones with software of versions earlier than LON-AL00BC00B235 have a use after free (UAF) vulnerability. An attacker tricks a user into installing a malicious application, and the application can riggers access memory after free it. A local attacker may exploit this vulnerability to cause the mobile phone to crash.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Use-after-free vulnerability in Huawei Mate 9 Pro (versions before LON-AL00BC00B235) allows local attackers to crash the device by tricking users into installing a malicious app.
Vulnerability
A use-after-free (UAF) vulnerability exists in Huawei Mate 9 Pro mobile phones running software versions earlier than LON-AL00BC00B235 [1]. The flaw occurs when a malicious application accesses memory after it has been freed, leading to undefined behavior.
Exploitation
An attacker must trick a user into installing a malicious application on the device [1]. Once installed, the application triggers the use-after-free condition by accessing freed memory, causing the phone to crash.
Impact
Successful exploitation results in a denial of service, causing the mobile phone to crash [1]. No other impacts such as code execution or data disclosure are mentioned in the advisory.
Mitigation
Huawei has released software update version LON-AL00BC00B235 to fix this vulnerability [1]. Users should upgrade to this version or later. No workarounds are provided.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <LON-AL00BC00B235
- Huawei Technologies Co., Ltd./Mate 9 Prov5Range: Versions earlier than LON-AL00BC00B235
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-phone-enmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.