CVE-2018-7990

3 documents3 sources
Severity
4.6MEDIUM
EPSS
0.0%
top 92.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei Mate 10 PRO FirmwareHuawei Technologies Co., Ltd. Mate10 PRO
Timeline
PublishedSep 4
Latest updateMay 13

Description

Mate10 Pro Huawei smart phones with the versions before 8.1.0.326(C00) have a FRP bypass vulnerability. During the mobile phone reseting process, an attacker could bypass "Find My Phone" protect after a series of voice and keyboard operations. Successful exploit could allow an attacker to bypass FRP.

CVSS vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 0.9 | Impact: 3.6

Affected Packages2 packages

NVDhuawei/mate_10_pro_firmware< 8.1.0.326\(c00\)
CVEListV5huawei_technologies_co.,_ltd./mate10_proThe versions before 8.1.0.326(C00)

🔴Vulnerability Details

2
GHSA
GHSA-w8rq-hhvc-jrj9: Mate10 Pro Huawei smart phones with the versions before 82022-05-13
CVEList
CVE-2018-7990: Mate10 Pro Huawei smart phones with the versions before 82018-09-04
CVE-2018-7990 (MEDIUM CVSS 4.6) | Mate10 Pro Huawei smart phones with | cvebase.io