CVE-2017-8151

Summary

Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have an authentication bypass vulnerability due to the improper design of some components. An attacker can get a user's smart phone and install malicious apps in the mobile phone, allowing the attacker to reset the password and fingerprint of the phone without authentication.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.Honor 5SThe versions before TAG-TL00C01B173affected

Weaknesses

  • Authentication Bypass

ADP Enrichment

CVE Program Container

Additional References

References