Vulnerability Details CVE-2017-2715
The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to information leak.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.3%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 2.1
Products affected by CVE-2017-2715
-
cpe:2.3:a:huawei:files:7.1.1.308
-
cpe:2.3:a:huawei:files:7.1.1.309