CVE-2017-2715

Summary

The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to information leak.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.Files £¨Files is the smartphone APP£©7.1.1.309 and earlier versionsaffected

Weaknesses

  • Brute-force attack

ADP Enrichment

CVE Program Container

Additional References

References