Sign-up

ID

VAR-201712-0796


CVE

CVE-2017-15309


TITLE

Huawei iReader Application path traversal vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-011592

DESCRIPTION

Huawei iReader app before 8.0.2.301 has a path traversal vulnerability due to insufficient validation on file storage paths. An attacker can exploit this vulnerability to store downloaded malicious files in an arbitrary directory. Huawei iReader The application contains a path traversal vulnerability.Tampering with information and disrupting service operations (DoS) There is a possibility of being put into a state. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.The specific flaw exists within the handling of the onChapPack function. Huawei iReader is a built-in e-book reading application for Huawei mobile phones produced by China's Huawei (Huawei)

Trust: 2.97

sources: NVD: CVE-2017-15309 // JVNDB: JVNDB-2017-011592 // ZDI: ZDI-18-878 // ZDI: ZDI-18-874 // VULHUB: VHN-106118

AFFECTED PRODUCTS

vendor:huaweimodel:ireaderscope:ltversion:8.0.2.301

Trust: 1.8

vendor:huaweimodel:readerscope: - version: -

Trust: 1.4

sources: ZDI: ZDI-18-878 // ZDI: ZDI-18-874 // JVNDB: JVNDB-2017-011592 // NVD: CVE-2017-15309

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-15309
value: HIGH

Trust: 1.0

NVD: CVE-2017-15309
value: HIGH

Trust: 0.8

ZDI: CVE-2017-15309
value: MEDIUM

Trust: 0.7

ZDI: CVE-2017-15309
value: LOW

Trust: 0.7

CNNVD: CNNVD-201710-467
value: MEDIUM

Trust: 0.6

VULHUB: VHN-106118
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-15309
severity: MEDIUM
baseScore: 5.8
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

ZDI: CVE-2017-15309
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.7

ZDI: CVE-2017-15309
severity: LOW
baseScore: 3.6
vectorString: AV:L/AC:L/AU:N/C:N/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.7

VULHUB: VHN-106118
severity: MEDIUM
baseScore: 5.8
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-15309
baseSeverity: HIGH
baseScore: 7.1
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: LOW
exploitabilityScore: 2.8
impactScore: 4.2
version: 3.0

Trust: 1.8

sources: ZDI: ZDI-18-878 // ZDI: ZDI-18-874 // VULHUB: VHN-106118 // JVNDB: JVNDB-2017-011592 // CNNVD: CNNVD-201710-467 // NVD: CVE-2017-15309

PROBLEMTYPE DATA

problemtype:CWE-22

Trust: 1.9

sources: VULHUB: VHN-106118 // JVNDB: JVNDB-2017-011592 // NVD: CVE-2017-15309

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201710-467

TYPE

path traversal

Trust: 0.6

sources: CNNVD: CNNVD-201710-467

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-011592

PATCH
title:huawei-sa-20171120-01-hwreaderurl:http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171120-01-hwreader-en
Trust: 2.2
sources:
            
            
            ZDI: ZDI-18-878 // 
            
            
            
            ZDI: ZDI-18-874 // 
            
            
            
            JVNDB: JVNDB-2017-011592

EXTERNAL IDS
db:NVDid:CVE-2017-15309
Trust: 3.9
db:JVNDBid:JVNDB-2017-011592
Trust: 0.8
db:ZDI_CANid:ZDI-CAN-5349
Trust: 0.7
db:ZDIid:ZDI-18-878
Trust: 0.7
db:ZDI_CANid:ZDI-CAN-5350
Trust: 0.7
db:ZDIid:ZDI-18-874
Trust: 0.7
db:CNNVDid:CNNVD-201710-467
Trust: 0.7
db:VULHUBid:VHN-106118
Trust: 0.1
sources:
            
            
            ZDI: ZDI-18-878 // 
            
            
            
            ZDI: ZDI-18-874 // 
            
            
            
            VULHUB: VHN-106118 // 
            
            
            
            JVNDB: JVNDB-2017-011592 // 
            
            
            
            CNNVD: CNNVD-201710-467 // 
            
            
            
            NVD: CVE-2017-15309

REFERENCES
url:http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171120-01-hwreader-en
Trust: 2.5
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-15309
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-15309
Trust: 0.8
url:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171120-01-hwreader-en
Trust: 0.6
sources:
            
            
            ZDI: ZDI-18-878 // 
            
            
            
            ZDI: ZDI-18-874 // 
            
            
            
            VULHUB: VHN-106118 // 
            
            
            
            JVNDB: JVNDB-2017-011592 // 
            
            
            
            CNNVD: CNNVD-201710-467 // 
            
            
            
            NVD: CVE-2017-15309

CREDITS
MWR Labs - Alex Plaskett James Loureiro Robert Miller and Georgi Geshev
Trust: 1.4
sources:
            
            
            ZDI: ZDI-18-878 // 
            
            
            
            ZDI: ZDI-18-874

SOURCES
db:ZDIid:ZDI-18-878
db:ZDIid:ZDI-18-874
db:VULHUBid:VHN-106118
db:JVNDBid:JVNDB-2017-011592
db:CNNVDid:CNNVD-201710-467
db:NVDid:CVE-2017-15309

LAST UPDATE DATE
2025-04-20T23:32:46.789000+00:00

SOURCES UPDATE DATE
db:ZDIid:ZDI-18-878date:2018-08-02T00:00:00
db:ZDIid:ZDI-18-874date:2018-08-02T00:00:00
db:VULHUBid:VHN-106118date:2018-01-05T00:00:00
db:JVNDBid:JVNDB-2017-011592date:2018-01-22T00:00:00
db:CNNVDid:CNNVD-201710-467date:2017-12-01T00:00:00
db:NVDid:CVE-2017-15309date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:ZDIid:ZDI-18-878date:2018-08-02T00:00:00
db:ZDIid:ZDI-18-874date:2018-08-02T00:00:00
db:VULHUBid:VHN-106118date:2017-12-22T00:00:00
db:JVNDBid:JVNDB-2017-011592date:2018-01-22T00:00:00
db:CNNVDid:CNNVD-201710-467date:2017-11-20T00:00:00
db:NVDid:CVE-2017-15309date:2017-12-22T17:29:12.970