CVE-2017-2703

Phone Finder in versions earlier before MHA-AL00BC00B156,Versions earlier before MHA-CL00BC00B156,Versions earlier before MHA-DL00BC00B156,Versions earlier before MHA-TL00BC00B156,Versions earlier before EVA-AL10C00B373,Versions earlier before EVA-CL10C00B373,Versions earlier before EVA-DL10C00B373,Versions earlier before EVA-TL10C00B373 can be bypass. An attacker can bypass the Phone Finder by special steps and enter the System Setting.

Published: Nov 22, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-2703
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.8
AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
huawei / mate_9_firmware	-	mha-al00bc00b156
huawei / mate_9_firmware	-	mha-cl00bc00b156
huawei / mate_9_firmware	-	mha-dl00bc00b156
huawei / mate_9_firmware	-	mha-tl00bc00b156
huawei / p9_firmware	-	eva-al10c00b373
huawei / p9_firmware	-	eva-cl10c00b373
huawei / p9_firmware	-	eva-dl10c00b373
huawei / p9_firmware	-	eva-tl10c00b373

Vulnerability Database

290,020

CVE-2017-2703