Vulnerability Details CVE-2017-2710
BTV-W09C229B002CUSTC229D005,BTV-W09C233B029, earlier than BTV-W09C100B006CUSTC100D002 versions, earlier than BTV-W09C128B003CUSTC128D002 versions, earlier than BTV-W09C199B002CUSTC199D002 versions, earlier than BTV-W09C209B005CUSTC209D001 versions, earlier than BTV-W09C331B002CUSTC331D001 versions, earlier than CRR-L09C432B390 versions, earlier than CRR-L09C605B355CUSTC605D003 versions have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can perform some operations to update the Google account. As a result, the FRP function is bypassed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.5%
CVSS Severity
CVSS v3 Score 4.6
CVSS v2 Score 2.1
References
Products affected by CVE-2017-2710
-
cpe:2.3:h:huawei:beethoven-w09a:-
-
cpe:2.3:h:huawei:crr-l09:-
-
cpe:2.3:o:huawei:beethoven-w09a_firmware:-
-
cpe:2.3:o:huawei:beethoven-w09a_firmware:btv-w09c100b006custc100d002
-
cpe:2.3:o:huawei:beethoven-w09a_firmware:btv-w09c128b003custc128d002
-
cpe:2.3:o:huawei:beethoven-w09a_firmware:btv-w09c199b002custc199d002
-
cpe:2.3:o:huawei:beethoven-w09a_firmware:btv-w09c209b005custc209d001
-
cpe:2.3:o:huawei:beethoven-w09a_firmware:btv-w09c229b002custc229d005
-
cpe:2.3:o:huawei:beethoven-w09a_firmware:btv-w09c233b029
-
cpe:2.3:o:huawei:crr-l09_firmware:-
-
cpe:2.3:o:huawei:crr-l09_firmware:crr-l09c432b390