medium
4.3
CWE
20
Advisory Published
Updated

CVE-2017-8164: Input Validation

First published: Mon Mar 05 2018(Updated: )

Some Huawei smart phones with software EVA-L09C34B142; EVA-L09C40B196; EVA-L09C432B210; EVA-L09C440B138; EVA-L09C464B150; EVA-L09C530B127; EVA-L09C55B190; EVA-L09C576B150; EVA-L09C635B221; EVA-L09C636B193; EVA-L09C675B130; EVA-L09C688B143; EVA-L09C703B160; EVA-L09C706B145; EVA-L09GBRC555B171; EVA-L09IRLC368B160; EVA-L19C10B190; EVA-L19C185B220; EVA-L19C20B160; EVA-L19C432B210; EVA-L19C636B190; EVA-L29C20B160; EVA-L29C636B191; EVA-TL00C01B198; VIE-L09C02B131; VIE-L09C109B181; VIE-L09C113B170; VIE-L09C150B170; VIE-L09C25B120; VIE-L09C40B181; VIE-L09C432B181; VIE-L09C55B170; VIE-L09C605B131; VIE-L09ITAC555B130; VIE-L29C10B170; VIE-L29C185B181; VIE-L29C605B131; VIE-L29C636B202 have a denial of service (DoS) vulnerability. An attacker can trick a user to install a malicious application to exploit this vulnerability. Successful exploitation can cause camera application unusable.

Credit: psirt@huawei.com

Affected SoftwareAffected VersionHow to fix
Huawei Eva-al10=eva-al10c00b198
Huawei Eva-al10 Firmware
Huawei Eva-cl00=eva-cl00c92b198
Huawei Eva-cl00 Firmware
Huawei Eva-dl00 Firmware=eva-dl00c17b198
Huawei Eva-dl00 Firmware
Huawei Eva-L09 Firmware=eva-l09c02b143
Huawei Eva-L09 Firmware=eva-l09c09b150
Huawei Eva-L09 Firmware=eva-l09c22b140
Huawei Eva-L09 Firmware=eva-l09c25b133
Huawei Eva-L09 Firmware=eva-l09c33b191
Huawei Eva-L09 Firmware=eva-l09c34b142
Huawei Eva-L09 Firmware=eva-l09c40b196
Huawei Eva-L09 Firmware=eva-l09c55b190
Huawei Eva-L09 Firmware=eva-l09c109b196
Huawei Eva-L09 Firmware=eva-l09c113b150
Huawei Eva-L09 Firmware=eva-l09c150b192
Huawei Eva-L09 Firmware=eva-l09c178b161
Huawei Eva-L09 Firmware=eva-l09c185b180
Huawei Eva-L09 Firmware=eva-l09c432b210
Huawei Eva-L09 Firmware=eva-l09c440b138
Huawei Eva-L09 Firmware=eva-l09c464b150
Huawei Eva-L09 Firmware=eva-l09c530b127
Huawei Eva-L09 Firmware=eva-l09c576b150
Huawei Eva-L09 Firmware=eva-l09c635b221
Huawei Eva-L09 Firmware=eva-l09c636b193
Huawei Eva-L09 Firmware=eva-l09c675b130
Huawei Eva-L09 Firmware=eva-l09c688b143
Huawei Eva-L09 Firmware=eva-l09c703b160
Huawei Eva-L09 Firmware=eva-l09c706b145
Huawei Eva-L09 Firmware=eva-l09gbrc555b171
Huawei Eva-L09 Firmware=eva-l09irlc368b160
Huawei Eva-L09 Firmware
Huawei Eva-L19=eva-l19c10b190
Huawei Eva-L19=eva-l19c20b160
Huawei Eva-L19=eva-l19c185b220
Huawei Eva-L19=eva-l19c432b210
Huawei Eva-L19=eva-l19c636b190
Huawei Eva-L19
Huawei Eva-L29=eva-l29c20b160
Huawei Eva-L29=eva-l29c636b191
Huawei Eva-L29 Firmware
Huawei Eva-tl00 Firmware=eva-tl00c01b198
Huawei Eva-tl00 Firmware
Huawei Vie-l09 Firmware=vie-l09c02b131
Huawei Vie-l09 Firmware=vie-l09c25b120
Huawei Vie-l09 Firmware=vie-l09c40b181
Huawei Vie-l09 Firmware=vie-l09c55b170
Huawei Vie-l09 Firmware=vie-l09c109b181
Huawei Vie-l09 Firmware=vie-l09c113b170
Huawei Vie-l09 Firmware=vie-l09c150b170
Huawei Vie-l09 Firmware=vie-l09c432b181
Huawei Vie-l09 Firmware=vie-l09c605b131
Huawei Vie-l09 Firmware=vie-l09itac555b130
Huawei Vie-l09 Firmware
Huawei Vie-l29 Firmware=vie-l29c10b170
Huawei Vie-l29 Firmware=vie-l29c185b181
Huawei Vie-l29 Firmware=vie-l29c605b131
Huawei Vie-l29 Firmware=vie-l29c636b202
Huawei Vie-L29

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2017-8164?

    CVE-2017-8164 is rated as a high severity vulnerability affecting specific Huawei smartphone models.

  • How do I fix CVE-2017-8164?

    To fix CVE-2017-8164, update your Huawei device to a firmware version that is not vulnerable, specifically those released after the issue was identified.

  • Which Huawei smartphones are affected by CVE-2017-8164?

    Affected Huawei smartphones include certain versions of EVA-L09, EVA-L10, EVA-DL00, and others as specified in the advisory.

  • What kind of vulnerability is CVE-2017-8164?

    CVE-2017-8164 is a vulnerability that could potentially allow attackers to exploit the faulty software on affected Huawei smartphones.

  • Is CVE-2017-8164 being actively exploited?

    As of the last report, there are no confirmed active exploits of CVE-2017-8164, but users are advised to update their firmware to mitigate risks.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203