Описание
Huawei APP HiWallet earlier than 5.0.3.100 versions do not support signature verification for APK file. An attacker could exploit this vulnerability to hijack the APK and upload modified APK file. Successful exploit could lead to the APP is hijacking.
Уязвимые конфигурации
Конфигурация 1Версия до 5.0.3.100 (исключая)
cpe:2.3:a:huawei:hiwallet:*:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00053
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-347
Связанные уязвимости
CVSS3: 5.3
github
больше 3 лет назад
Huawei APP HiWallet earlier than 5.0.3.100 versions do not support signature verification for APK file. An attacker could exploit this vulnerability to hijack the APK and upload modified APK file. Successful exploit could lead to the APP is hijacking.
EPSS
Процентиль: 16%
0.00053
Низкий
5.3 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-347