Описание
Huawei P9 phones with software EVA-AL10C00,EVA-CL10C00,EVA-DL10C00,EVA-TL10C00 and P9 Lite phones with software VNS-L21C185 allow attackers to bypass the factory reset protection (FRP) to enter some functional modules without authorization and perform operations to update the Google account.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:huawei:p9_firmware:eva-al10c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:p9_firmware:eva-cl10c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:p9_firmware:eva-dl10c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:p9_firmware:eva-tl10c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:p9:-:*:*:*:*:*:*:*
Конфигурация 2
Одновременно
cpe:2.3:o:huawei:p9_lite_firmware:vns-l21c185:*:*:*:*:*:*:*
cpe:2.3:h:huawei:p9_lite:-:*:*:*:*:*:*:*
EPSS
Процентиль: 8%
0.0003
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-285
Связанные уязвимости
CVSS3: 4.6
github
больше 3 лет назад
Huawei P9 phones with software EVA-AL10C00,EVA-CL10C00,EVA-DL10C00,EVA-TL10C00 and P9 Lite phones with software VNS-L21C185 allow attackers to bypass the factory reset protection (FRP) to enter some functional modules without authorization and perform operations to update the Google account.
EPSS
Процентиль: 8%
0.0003
Низкий
4.6 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-285