CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-7957

Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage vulnerability. Because an interface does not verify authorization correctly, attackers can exploit an application with the authorization of phone state to obtain user location additionally.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.5%

CVSS Severity

CVSS v3 Score 3.3

CVSS v2 Score 2.1

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180704-01-smartphone-en
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180704-01-smartphone-en

Products affected by CVE-2018-7957

Huawei » Victoria-Al00 » Version: N/A

cpe:2.3:h:huawei:victoria-al00:-
Huawei » Victoria-Al00 Firmware » Version: victoria-al00_8.0.0.336a(c00)

cpe:2.3:o:huawei:victoria-al00_firmware:victoria-al00_8.0.0.336a(c00)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-7957

Products

Pricing

Contact Us