Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-2703

Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00BC00B156,Versions earlier before MHA-DL00BC00B156,Versions earlier before MHA-TL00BC00B156,Versions earlier before EVA-AL10C00B373,Versions earlier before EVA-CL10C00B373,Versions earlier before EVA-DL10C00B373,Versions earlier before EVA-TL10C00B373 can be bypass. An attacker can bypass the Phone Finder by special steps and enter the System Setting.

Published

2017-11-22T19:29:00.693

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 6.8 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

  • Access Vector: LOCAL
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: COMPLETE
  • Integrity Impact: COMPLETE
  • Availability Impact: COMPLETE
Exploitability Score

3.9

Impact Score

10.0

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System huawei mate_9_firmware < mha-al00bc00b156 Yes
Hardware huawei mate_9 - No
Operating System huawei mate_9_firmware < mha-cl00bc00b156 Yes
Hardware huawei mate_9 - No
Operating System huawei mate_9_firmware < mha-dl00bc00b156 Yes
Hardware huawei mate_9 - No
Operating System huawei mate_9_firmware < mha-tl00bc00b156 Yes
Hardware huawei mate_9 - No
Operating System huawei p9_firmware < eva-al10c00b373 Yes
Hardware huawei p9 - No
Operating System huawei p9_firmware < eva-cl10c00b373 Yes
Hardware huawei p9 - No
Operating System huawei p9_firmware < eva-dl10c00b373 Yes
Hardware huawei p9 - No
Operating System huawei p9_firmware < eva-tl10c00b373 Yes
Hardware huawei p9 - No
References