VYPR
High severity7.8NVD Advisory· Published Nov 22, 2017· Updated Jun 17, 2026

CVE-2017-8140

CVE-2017-8140

Description

The soundtrigger driver in P9 Plus smart phones with software versions earlier than VIE-AL10BC00B353 has a memory double free vulnerability. An attacker tricks a user into installing a malicious application, and the application can start multiple threads and try to free specific memory, which could triggers double free and causes a system crash or arbitrary code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:o:huawei:p9_plus_firmware:*:*:*:*:*:*:*:*
    Range: <vie-al10bc00b353
  • Huawei Technologies Co., Ltd./P9 Plusv5
    Range: Versions earlier than VIE-AL10BC00B353

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.