VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 12, 2018· Updated Aug 5, 2024

CVE-2018-7906

CVE-2018-7906

Description

Some Huawei smart phones with software of Leland-AL00 8.0.0.114(C636), Leland-AL00A 8.0.0.171(C00) have a denial of service (DoS) vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Due to insufficient verification of the parameter, successful exploitation can cause the smartphone black screen until restarting the phone.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Huawei Leland-AL00 and AL00A smartphones suffer from a DoS vulnerability allowing a malicious app to cause a black screen and restart.

Vulnerability

Some Huawei smart phones with software of Leland-AL00 8.0.0.114(C636) and Leland-AL00A 8.0.0.171(C00) have a denial of service (DoS) vulnerability due to insufficient verification of a parameter when a malicious application is installed. [1]

Exploitation

An attacker tricks a user into installing a malicious application. The app exploits the insufficient verification, causing the smartphone to experience a black screen until it restarts. [1]

Impact

Successful exploitation leads to denial of service: the smartphone becomes unresponsive with a black screen and requires a restart to recover. [1]

Mitigation

Huawei has released software updates to fix the vulnerability. Affected users should upgrade Leland-AL00 to version 8.0.0.116(C636) and Leland-AL00A to version 8.0.0.178(C00). [1]

References
  1. Security Advisory - DoS Vulnerability in Some Huawei Smart Phones

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Huawei/Leland-AL00llm-create
    Range: = 8.0.0.114(C636) and 8.0.0.171(C00)
  • Huawei Technologies Co., Ltd./Leland-AL00, Leland-AL00Av5
    Range: Leland-AL00 8.0.0.114(C636), Leland-AL00A 8.0.0.171(C00)

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.