CVE-2017-2721

Some Huawei smart phones with software Berlin-L21C10B130,Berlin-L21C185B133,Berlin-L21HNC10B131,Berlin-L21HNC185B140,Berlin-L21HNC432B151,Berlin-L22C636B160,Berlin-L22HNC636B130,Berlin-L22HNC675B150CUSTC675D001,Berlin-L23C605B131,Berlin-L24HNC567B110,FRD-L02C432B120,FRD-L02C635B130,FRD-L02C675B170CUSTC675D001,FRD-L04C567B162,FRD-L04C605B131,FRD-L09C10B130,FRD-L09C185B130,FRD-L09C432B131,FRD-L09C636B130,FRD-L14C567B162,FRD-L19C10B130,FRD-L19C432B131,FRD-L19C636B130 have a factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Swype Keyboard and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

CVSS v3.0 4.6 MEDIUM
CVSS v2.0 2.1 LOW

4.6^/10

CVSS v3.0 : MEDIUM

V3 Legend

Vector : AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Exploitability : 0.9 / Impact : 3.6

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170920-01-frpbypass-en	Issue Tracking Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:huawei:berlin-l21_firmware:berlin-l21c185b133:::::::*
	cpe:2.3:o:huawei:berlin-l21_firmware:berlin-l21c10b130:::::::*

cpe:2.3:h:huawei:berlin-l21:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

OR	cpe:2.3:o:huawei:berlin-l21hn_firmware:berlin-l21hnc432b151:::::::*
	cpe:2.3:o:huawei:berlin-l21hn_firmware:berlin-l21hnc185b140:::::::*
	cpe:2.3:o:huawei:berlin-l21hn_firmware:berlin-l21hnc10b131:::::::*

cpe:2.3:h:huawei:berlin-l21hn:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:huawei:berlin-l22_firmware:berlin-l22c636b160:*:*:*:*:*:*:*

cpe:2.3:h:huawei:berlin-l22:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

OR	cpe:2.3:o:huawei:berlin-l22hn_firmware:berlin-l22hnc675b150custc675d001:::::::*
	cpe:2.3:o:huawei:berlin-l22hn_firmware:berlin-l22hnc636b130:::::::*

cpe:2.3:h:huawei:berlin-l22hn:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:huawei:berlin-l23_firmware:berlin-l23c605b131:*:*:*:*:*:*:*

cpe:2.3:h:huawei:berlin-l23:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:huawei:berlin-l24hn_firmware:berlin-l24hnc567b110:*:*:*:*:*:*:*

cpe:2.3:h:huawei:berlin-l24hn:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

OR	cpe:2.3:o:huawei:frd-l02_firmware:frd-l02c675b170custc675d001:::::::*
	cpe:2.3:o:huawei:frd-l02_firmware:frd-l02c432b120:::::::*
	cpe:2.3:o:huawei:frd-l02_firmware:frd-l02c635b130:::::::*

cpe:2.3:h:huawei:frd-l02:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

OR	cpe:2.3:o:huawei:frd-l04_firmware:frd-l04c605b131:::::::*
	cpe:2.3:o:huawei:frd-l04_firmware:frd-l04c567b162:::::::*

cpe:2.3:h:huawei:frd-l04:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

OR	cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c636b130:::::::*
	cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c432b131:::::::*
	cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c185b130:::::::*
	cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c10b130:::::::*

cpe:2.3:h:huawei:frd-l09:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:huawei:frd-l14_firmware:frd-l14c567b162:*:*:*:*:*:*:*

cpe:2.3:h:huawei:frd-l14:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

OR	cpe:2.3:o:huawei:frd-l19_firmware:frd-l19c10b130:::::::*
	cpe:2.3:o:huawei:frd-l19_firmware:frd-l19c432b131:::::::*
	cpe:2.3:o:huawei:frd-l19_firmware:frd-l19c636b130:::::::*

cpe:2.3:h:huawei:frd-l19:-:*:*:*:*:*:*:*

Information

Published : 2017-11-22 11:29

Updated : 2019-10-02 17:03

NVD link : CVE-2017-2721

Mitre link : CVE-2017-2721

JSON object : View

CWE

CWE-287

Improper Authentication

Products Affected

huawei

frd-l02_firmware
berlin-l21hn_firmware
berlin-l21hn
berlin-l21_firmware
berlin-l22hn_firmware
berlin-l23
frd-l14
berlin-l22_firmware
frd-l02
frd-l04
berlin-l22hn
berlin-l22
frd-l14_firmware
berlin-l24hn_firmware
frd-l04_firmware
frd-l09
frd-l09_firmware
berlin-l24hn
frd-l19_firmware
berlin-l23_firmware
frd-l19
berlin-l21

4.6 /10

Attack Vector PHYSICAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

2.1 /10

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

JSON object

Attach tags to CVE-2017-2721

4.6^/10

2.1^/10

Attach tags to `CVE-2017-2721`