Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2017-2721

Published: 22/11/2017 Updated: 03/10/2019
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 4.6 | Impact Score: 3.6 | Exploitability Score: 0.9
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

Vulnerability Summary

Some Huawei smart phones with software Berlin-L21C10B130,Berlin-L21C185B133,Berlin-L21HNC10B131,Berlin-L21HNC185B140,Berlin-L21HNC432B151,Berlin-L22C636B160,Berlin-L22HNC636B130,Berlin-L22HNC675B150CUSTC675D001,Berlin-L23C605B131,Berlin-L24HNC567B110,FRD-L02C432B120,FRD-L02C635B130,FRD-L02C675B170CUSTC675D001,FRD-L04C567B162,FRD-L04C605B131,FRD-L09C10B130,FRD-L09C185B130,FRD-L09C432B131,FRD-L09C636B130,FRD-L14C567B162,FRD-L19C10B130,FRD-L19C432B131,FRD-L19C636B130 have a factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Swype Keyboard and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

Vulnerable Product Search on Vulmon Subscribe to Product

huawei berlin-l21_firmware berlin-l21c185b133

huawei berlin-l21_firmware berlin-l21c10b130

huawei berlin-l21hn_firmware berlin-l21hnc432b151

huawei berlin-l21hn_firmware berlin-l21hnc185b140

huawei berlin-l21hn_firmware berlin-l21hnc10b131

huawei berlin-l22_firmware berlin-l22c636b160

huawei berlin-l22hn_firmware berlin-l22hnc675b150custc675d001

huawei berlin-l22hn_firmware berlin-l22hnc636b130

huawei berlin-l23_firmware berlin-l23c605b131

huawei berlin-l24hn_firmware berlin-l24hnc567b110

huawei frd-l02_firmware frd-l02c675b170custc675d001

huawei frd-l02_firmware frd-l02c432b120

huawei frd-l02_firmware frd-l02c635b130

huawei frd-l04_firmware frd-l04c605b131

huawei frd-l04_firmware frd-l04c567b162

huawei frd-l09_firmware frd-l09c636b130

huawei frd-l09_firmware frd-l09c432b131

huawei frd-l09_firmware frd-l09c185b130

huawei frd-l09_firmware frd-l09c10b130

huawei frd-l14_firmware frd-l14c567b162

huawei frd-l19_firmware frd-l19c10b130

huawei frd-l19_firmware frd-l19c432b131

huawei frd-l19_firmware frd-l19c636b130

References

CWE-287http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170920-01-frpbypass-enhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5324path traversalCVE-2024-4743CVE-2024-5184TCPCVE-2024-27822code injectionCVE-2024-28995CVE-2023-20938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook