Heap-based buffer overflow in the HIFI driver in Huawei P8 smartphones with software GRA-TL00 before GRA-TL00C01B230, GRA-CL00 before GRA-CL00C92B230, GRA-CL10 before GRA-CL10C92B230, GRA-UL00 before GRA-UL00C00B230, and GRA-UL10 before GRA-UL10C00B230, and Mate S smartphones with software CRR-TL00 before CRR-TL00C01B160SP01, CRR-UL00 before CRR-UL00C00B160, and CRR-CL00 before CRR-CL00C92B161 allows attackers to cause a denial of service (system crash) or gain privileges via a crafted application, a different vulnerability than CVE-2015-8319.
Conclusion & alert: CVE-2015-8318 is rated Moderate Risk (49.4/100): CVSS High severity, with medium exploitation likelihood (EPSS 0.76%). Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2026-06-15 | 0.14% | 0.76% | +0.62% |
| 2 | 2025-03-25 | 0.15% | 0.14% | -0.01% |
| 3 | 2025-03-17 | — | 0.15% | — |
Full EPSS history (5 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 7.8 | 3.0 | HIGH |
|
1.8 | 5.9 | [email protected] |
| 9.3 | 2.0 | HIGH |
|
8.6 | 10.0 | [email protected] |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| huawei | p8_firmware | gra-cl00 | cpe:2.3:o:huawei:p8_firmware:gra-cl00:*:*:*:*:*:*:* |
| huawei | p8_firmware | gra-cl10 | cpe:2.3:o:huawei:p8_firmware:gra-cl10:*:*:*:*:*:*:* |
| huawei | p8_firmware | gra-tl00 | cpe:2.3:o:huawei:p8_firmware:gra-tl00:*:*:*:*:*:*:* |
| huawei | p8_firmware | gra-ul00 | cpe:2.3:o:huawei:p8_firmware:gra-ul00:*:*:*:*:*:*:* |
| huawei | p8_firmware | gra-ul10 | cpe:2.3:o:huawei:p8_firmware:gra-ul10:*:*:*:*:*:*:* |
| huawei | mate_s_firmware | crr-cl00 | cpe:2.3:o:huawei:mate_s_firmware:crr-cl00:*:*:*:*:*:*:* |
| huawei | mate_s_firmware | crr-tl00 | cpe:2.3:o:huawei:mate_s_firmware:crr-tl00:*:*:*:*:*:*:* |
| huawei | mate_s_firmware | crr-ul00 | cpe:2.3:o:huawei:mate_s_firmware:crr-ul00:*:*:*:*:*:*:* |
| URL | Tags |
|---|---|
| http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160104-04-smartphone-en | Vendor Advisory |