What is the severity of CVE-2015-8318?

CVE-2015-8318 is classified as a high severity vulnerability due to its potential to lead to remote code execution.

How do I fix CVE-2015-8318?

To fix CVE-2015-8318, users should update their Huawei P8 or Mate S smartphones to the latest software versions specified in the advisory.

Which devices are affected by CVE-2015-8318?

CVE-2015-8318 affects certain versions of Huawei P8 and Mate S smartphones with specific firmware versions.

What type of vulnerability is CVE-2015-8318?

CVE-2015-8318 is a heap-based buffer overflow vulnerability in the HIFI driver of affected smartphones.

Is my Huawei smartphone vulnerable if it has a newer firmware than specified?

If your Huawei smartphone's firmware version is newer than the versions specified in CVE-2015-8318, it should not be vulnerable.

Vulnerability/
CVE-2015-8318

critical

9.3

CWE

119

7/4/2016

6/8/2024

CVE-2015-8318: Buffer Overflow

First published: Thu Apr 07 2016(Updated: )

Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2015-8319.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Huawei P8 ALE-UL00
Huawei P8 firmware	=gra-cl00
Huawei P8 firmware	=gra-cl10
Huawei P8 firmware	=gra-tl00
Huawei P8 firmware	=gra-ul00
Huawei P8 firmware	=gra-ul10
Huawei Mate S firmware
Huawei Mate S firmware	=crr-cl00
Huawei Mate S firmware	=crr-tl00
Huawei Mate S firmware	=crr-ul00

Never miss a vulnerability like this again

Reference Links

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160104-04-smartphone-en

Frequently Asked Questions

What is the severity of CVE-2015-8318?
CVE-2015-8318 is classified as a high severity vulnerability due to its potential to lead to remote code execution.
How do I fix CVE-2015-8318?
To fix CVE-2015-8318, users should update their Huawei P8 or Mate S smartphones to the latest software versions specified in the advisory.
Which devices are affected by CVE-2015-8318?
CVE-2015-8318 affects certain versions of Huawei P8 and Mate S smartphones with specific firmware versions.
What type of vulnerability is CVE-2015-8318?
CVE-2015-8318 is a heap-based buffer overflow vulnerability in the HIFI driver of affected smartphones.
Is my Huawei smartphone vulnerable if it has a newer firmware than specified?
If your Huawei smartphone's firmware version is newer than the versions specified in CVE-2015-8318, it should not be vulnerable.

agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/references
agent/author
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/weakness
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/huawei
canonical/huawei p8 ale-ul00
canonical/huawei p8 firmware
version/huawei p8 firmware/gra-cl00
version/huawei p8 firmware/gra-cl10
version/huawei p8 firmware/gra-tl00
version/huawei p8 firmware/gra-ul00
version/huawei p8 firmware/gra-ul10
canonical/huawei mate s firmware
version/huawei mate s firmware/crr-cl00
version/huawei mate s firmware/crr-tl00
version/huawei mate s firmware/crr-ul00

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.