Описание
HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and HUAWEI Tech Support APP (for IOS) versions earlier before 5.0.0 have an information leak vulnerability. When an iPhone with these APPs installed access the Wi-Fi hotpot built by attacker, the attacker can collect the information of iPhone mode and firmware version.
Уязвимые конфигурации
Конфигурация 1Версия до 5.0.25.306 (исключая)Версия до 5.0.0 (исключая)
Одновременно
Одно из
cpe:2.3:a:huawei:hilink:*:*:*:*:*:*:*:*
cpe:2.3:a:huawei:tech_support:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:-:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00037
Низкий
3.5 Low
CVSS3
2.9 Low
CVSS2
Дефекты
CWE-200
Связанные уязвимости
CVSS3: 3.5
github
больше 3 лет назад
HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and HUAWEI Tech Support APP (for IOS) versions earlier before 5.0.0 have an information leak vulnerability. When an iPhone with these APPs installed access the Wi-Fi hotpot built by attacker, the attacker can collect the information of iPhone mode and firmware version.
EPSS
Процентиль: 11%
0.00037
Низкий
3.5 Low
CVSS3
2.9 Low
CVSS2
Дефекты
CWE-200