CVE-2018-7944

Huawei smart phones Emily-AL00A with software 8.1.0.106(SP2C00) and 8.1.0.107(SP5C00) have a Factory Reset Protection (FRP) bypass vulnerability. An attacker gets some user's smart phone and performs some special operations in the guide function. The attacker may exploit the vulnerability to bypass FRP function and use the phone normally.

Published: Jul 5, 2018
Updated: Apr 13, 2023
CVE: CVE-2018-7944
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.8
AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
huawei / emily-al00a_firmware	8.1.0.106(sp2c00)	8.1.0.106(sp2c00).x
huawei / emily-al00a_firmware	8.1.0.107(sp5c00)	8.1.0.107(sp5c00).x

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180622-01-bypass-en

Vulnerability Database

289,697

CVE-2018-7944