Vulnerability Details CVE-2018-7910
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 7.0%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 4.6
References
Products affected by CVE-2018-7910
-
cpe:2.3:h:huawei:alp-al00b:-
-
cpe:2.3:h:huawei:alp-tl00b:-
-
cpe:2.3:h:huawei:bla-al00b:-
-
cpe:2.3:h:huawei:bla-l09c:-
-
cpe:2.3:h:huawei:bla-l29c:-
-
cpe:2.3:o:huawei:alp-al00b_firmware:8.0.0.1.18d(c00)
-
cpe:2.3:o:huawei:alp-tl00b_firmware:8.0.0.1.18d(c01)
-
cpe:2.3:o:huawei:bla-al00b_firmware:8.0.0.1.18d(c00)
-
cpe:2.3:o:huawei:bla-l09c_firmware:8.0.0.127(c432)
-
cpe:2.3:o:huawei:bla-l09c_firmware:8.0.0.128(c432)
-
cpe:2.3:o:huawei:bla-l09c_firmware:8.0.0.137(c432)
-
cpe:2.3:o:huawei:bla-l29c_firmware:8.0.0.127(c432)
-
cpe:2.3:o:huawei:bla-l29c_firmware:8.0.0.137(c432)