A vulnerability was found in Huawei iReader App up to 8.0.2. It has been classified as critical. This affects an unknown code. The manipulation with an unknown input leads to a path traversal vulnerability. CWE is classifying the issue as CWE-22. The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory. This is going to have an impact on confidentiality, and integrity. The summary by CVE is:

Huawei iReader app before 8.0.2.301 has a path traversal vulnerability due to insufficient validation on file storage paths. An attacker can exploit this vulnerability to store downloaded malicious files in an arbitrary directory.

The bug was discovered 11/20/2017. The weakness was presented 12/22/2017 (Website). It is possible to read the advisory at huawei.com. This vulnerability is uniquely identified as CVE-2017-15309 since 10/14/2017. It is possible to initiate the attack remotely. No form of authentication is needed for exploitation. It demands that the victim is doing some kind of user interaction. The technical details are unknown and an exploit is not publicly available. The attack technique deployed by this issue is T1006 according to MITRE ATT&CK.

The vulnerability was handled as a non-public zero-day exploit for at least 32 days. During that time the estimated underground price was around $5k-$25k.

Upgrading to version 8.0.2.301 eliminates this vulnerability.

See 111002 and 111004 for similar entries.

Productinfo

Vendor

• Huawei

Name

• iReader App

Version

• 8.0.0
• 8.0.1
• 8.0.2

License

• commercial

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion