A vulnerability was found in Huawei Mate 8 up to NXT-AL10C00B197/NXT-CL10C00B197/NXT-DL10C00B197/NXT-TL10C00B197. It has been rated as problematic. This issue affects some unknown processing of the component ION Memory Management. The manipulation leads to improper input validation. The CWE definition for the vulnerability is CWE-20. The bug was discovered 10/26/2016. The weakness was disclosed 04/02/2017 as sa-20161026-01 (Website). The advisory is shared at huawei.com. The identification of this vulnerability is CVE-2016-8756. Local access is required to approach this attack. There are no technical details available. There is no exploit available. The price for an exploit might be around USD $0-$5k at the moment. It is declared as not defined. The vulnerability was handled as a non-public zero-day exploit for at least 158 days. We expect the 0-day to have been worth approximately $0-$5k. A possible mitigation has been published even before and not after the disclosure of the vulnerability. The vulnerability is also documented other vulnerability databases: SecurityFocus (BID 93935).
Do you want to use VulDB in your project?
Use the official API to access entries easily!