Описание
Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage vulnerability. Because an interface does not verify authorization correctly, attackers can exploit an application with the authorization of phone state to obtain user location additionally.
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:huawei:victoria-al00_firmware:victoria-al00_8.0.0.336a\(c00\):*:*:*:*:*:*:*
cpe:2.3:h:huawei:victoria-al00:-:*:*:*:*:*:*:*
EPSS
Процентиль: 5%
0.00022
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-863
Связанные уязвимости
CVSS3: 3.3
github
больше 3 лет назад
Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage vulnerability. Because an interface does not verify authorization correctly, attackers can exploit an application with the authorization of phone state to obtain user location additionally.
EPSS
Процентиль: 5%
0.00022
Низкий
3.3 Low
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-863