A vulnerability classified as problematic was found in Huawei Mate 8 up to NXT-AL10C00B561/NXT-CL10C00B561/NXT-DL10C00B561/NXT-TL10C00B561. Affected by this vulnerability is an unknown functionality of the component ION Memory Management. The manipulation leads to improper input validation. The CWE definition for the vulnerability is CWE-20. The bug was discovered 01/11/2017. The weakness was shared 04/02/2017 as sa-20170111-01 (Website). It is possible to read the advisory at huawei.com. This vulnerability is known as CVE-2016-8758. It is possible to launch the attack on the local host. There are no technical details available. There is no exploit available. The pricing for an exploit might be around USD $0-$5k at the moment. It is declared as not defined. The vulnerability was handled as a non-public zero-day exploit for at least 81 days. We expect the 0-day to have been worth approximately $0-$5k. A possible mitigation has been published even before and not after the disclosure of the vulnerability. The vulnerability is also documented other vulnerability databases: SecurityFocus (BID 95384).
Are you interested in using VulDB?
Download the whitepaper to learn more about our service!