CVE-2017-2727
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Huawei P9 smart phones with software versions earlier before EVA-AL00C00B365, versions earlier before EVA-AL10C00B365,Versions earlier before EVA-CL00C92B365, versions earlier before EVA-DL00C17B365, versions earlier before EVA-TL00C01B365 have a privilege escalation vulnerability. An unauthenticated attacker can bypass phone activation to user management page of the phone and create a new user. Successful exploit could allow the attacker operate part function of the phone.
Los smartphones Huawei P9 con versiones de software anteriores a la EVA-AL00C00B365, anteriores a la EVA-AL10C00B365, anteriores a la EVA-CL00C92B365, anteriores a la EVA-DL00C17B365 y versiones anteriores a la EVA-TL00C01B365 tienen una vulnerabilidad de escalado de privilegios. Un atacante no autenticado puede omitir la activación del teléfono en la página de gestión de usuarios del teléfono y crear un nuevo usuario. Un exploit exitoso puede permitir que el atacante opere parte de las funciones del teléfono.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2016-12-01 CVE Reserved
- 2017-11-22 CVE Published
- 2024-07-28 EPSS Updated
- 2024-09-16 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170209-01-smartphone-en | 2019-10-03 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | P9 Firmware Search vendor "Huawei" for product "P9 Firmware" | < eva-al00c00b365 Search vendor "Huawei" for product "P9 Firmware" and version " < eva-al00c00b365" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Search vendor "Huawei" for product "P9" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Firmware Search vendor "Huawei" for product "P9 Firmware" | < eva-al10c00b365 Search vendor "Huawei" for product "P9 Firmware" and version " < eva-al10c00b365" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Search vendor "Huawei" for product "P9" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Firmware Search vendor "Huawei" for product "P9 Firmware" | < eva-cl00c92b365 Search vendor "Huawei" for product "P9 Firmware" and version " < eva-cl00c92b365" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Search vendor "Huawei" for product "P9" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Firmware Search vendor "Huawei" for product "P9 Firmware" | < eva-dl00c17b365 Search vendor "Huawei" for product "P9 Firmware" and version " < eva-dl00c17b365" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Search vendor "Huawei" for product "P9" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | P9 Firmware Search vendor "Huawei" for product "P9 Firmware" | < eva-tl00c01b365 Search vendor "Huawei" for product "P9 Firmware" and version " < eva-tl00c01b365" | - |
Affected
| in | Huawei Search vendor "Huawei" | P9 Search vendor "Huawei" for product "P9" | - | - |
Safe
|