HUAWEI P9 smartphones with software versions earlier before EVA-L09C432B383, versions earlier before EVA-L09C636B380, versions earlier before VIE-L09C432B370, versions earlier before VIE-L29C636B370 have an insufficient input validation vulnerability. An attacker could exploit this vulnerability to tamper with air interface signaling messages and obtain some communication information.
2017-11-22T19:29:01.053
2025-04-20T01:37:25.860
Deferred
CVSSv3.0: 5.4 (MEDIUM)
AV:A/AC:L/Au:N/C:P/I:P/A:N
6.5
4.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | huawei | p9_firmware | < eva-l09c432b383 | Yes |
| Hardware | huawei | p9 | - | No |
| Operating System | huawei | p9_firmware | < eva-l09c636b380 | Yes |
| Hardware | huawei | p9 | - | No |
| Operating System | huawei | p9_firmware | < vie-l09c432b370 | Yes |
| Hardware | huawei | p9 | - | No |
| Operating System | huawei | p9_firmware | < vie-l29c636b370 | Yes |
| Hardware | huawei | p9 | - | No |