Vulnerability Details CVE-2018-7989
Huawei Mate 10 pro smartphones with the versions before BLA-AL00B 8.1.0.326(C00) have an improper authentication vulnerability. App Lock is a function to prevent unauthorized use of apps on smartphones, an attacker could directly change the lock password after a series of operations. Successful exploit could allow the attacker to use the application which is locked.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.4%
CVSS Severity
CVSS v3 Score 4.6
CVSS v2 Score 2.1
References
Products affected by CVE-2018-7989
-
cpe:2.3:h:huawei:mate_10_pro:-
-
cpe:2.3:o:huawei:mate_10_pro_firmware:-
-
cpe:2.3:o:huawei:mate_10_pro_firmware:8.1.0.326(c00)
-
cpe:2.3:o:huawei:mate_10_pro_firmware:9.0.0.159(c185e2r1p13t8)
-
cpe:2.3:o:huawei:mate_10_pro_firmware:9.0.0.159(c636e2r1p13t8)
-
cpe:2.3:o:huawei:mate_10_pro_firmware:9.0.0.161(c432e4r1p11t8)
-
cpe:2.3:o:huawei:mate_10_pro_firmware:9.0.0.167(c00e87r2p15t8)
-
cpe:2.3:o:huawei:mate_10_pro_firmware:9.1.0.321(c605e4r1p13t8)
-
cpe:2.3:o:huawei:mate_10_pro_firmware:9.1.0.321(c636e4r1p14t8)
-
cpe:2.3:o:huawei:mate_10_pro_firmware:9.1.0.330(c432e6r1p12t8)