CVE-2015-8088

high

Published 2016-01-12 · Modified 2026-05-06

CVSS v3

7.8

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CVSS v2

9.3

VIR risk

7.8

Description

Heap-based buffer overflow in the HIFI driver in Huawei Mate 7 phones with software MT7-UL00 before MT7-UL00C17B354, MT7-TL10 before MT7-TL10C00B354, MT7-TL00 before MT7-TL00C01B354, and MT7-CL00 before MT7-CL00C92B354 and P8 phones with software GRA-TL00 before GRA-TL00C01B220SP01, GRA-CL00 before GRA-CL00C92B220, GRA-CL10 before GRA-CL10C92B220, GRA-UL00 before GRA-UL00C00B220, and GRA-UL10 before GRA-UL10C00B220 allows attackers to cause a denial of service (reboot) or execute arbitrary code via a crafted application.

Predictions

Exploit likelihood

75%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — http://www.huawei.com/en/psirt/security-advisories/hw-460347

References

http://www.huawei.com/en/psirt/security-advisories/hw-460347
http://www.securityfocus.com/bid/77560
http://www.huawei.com/en/psirt/security-advisories/hw-460347
http://www.securityfocus.com/bid/77560

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.