CVE-2017-8161

EVA-L09 smartphones with software Earlier than EVA-L09C25B150CUSTC25D003 versions,Earlier than EVA-L09C440B140 versions,Earlier than EVA-L09C464B361 versions,Earlier than EVA-L09C675B320CUSTC675D004 versions have Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the Swype and can perform some operations to update the Google account. As a result, the FRP function is bypassed.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:huawei:eva-l09:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:eva-l09:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:huawei:eva-l09:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:eva-l09:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:huawei:eva-l09:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:eva-l09:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:huawei:eva-l09:*:*:*:*:*:*:*:*
cpe:2.3:h:huawei:eva-l09:-:*:*:*:*:*:*:*

Information

Published : 2017-11-22 11:29

Updated : 2019-10-02 17:03


NVD link : CVE-2017-8161

Mitre link : CVE-2017-8161


JSON object : View

CWE
CWE-668

Exposure of Resource to Wrong Sphere

Advertisement

dedicated server usa

Products Affected

huawei

  • eva-l09