CVE-2017-2705

4 documents4 sources
Severity
2.4LOW
EPSS
0.0%
top 85.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei P9 FirmwareHuawei Technologies Co., Ltd. Huawei P9
Timeline
PublishedNov 22
Latest updateMay 13

Description

Huawei P9 smartphones with software versions earlier before EVA-AL10C00B365, versions earlier before EVA-AL00C00B365, versions earlier before EVA-CL00C92B365, versions earlier before EVA-DL00C17B365, versions earlier before EVA-TL00C01B365 have a phone activation bypass vulnerability. Successful exploit could allow an unauthenticated attacker to bypass phone activation to settings page of the phone.

CVSS vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 0.9 | Impact: 1.4

Affected Packages2 packages

NVDhuawei/p9_firmware< eva-al00c00b365+4
CVEListV5huawei_technologies_co.,_ltd./huawei_p9Versions earlier before EVA-AL10C00B365, Versions earlier before EVA-AL00C00B365, Versions earlier before EVA-CL00C92B365, Versions earlier before EVA-DL00C17B365, Versions earlier before EVA-TL00C01B365

🔴Vulnerability Details

2
GHSA
GHSA-3mfm-97cm-96cr: Huawei P9 smartphones with software versions earlier before EVA-AL10C00B365, versions earlier before EVA-AL00C00B365, versions earlier before EVA-CL002022-05-13
CVEList
CVE-2017-2705: Huawei P9 smartphones with software versions earlier before EVA-AL10C00B365, versions earlier before EVA-AL00C00B365, versions earlier before EVA-CL002017-11-22
CVE-2017-2705 (LOW CVSS 2.4) | Huawei P9 smartphones with software | cvebase.io