// For flags

CVE-2018-7939

 

Severity Score

4.6
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Huawei smart phones G9 Lite, Honor 5A, Honor 6X, Honor 8 with the versions before VNS-L53C605B120CUSTC605D103, the versions before CAM-L03C605B143CUSTC605D008, the versions before CAM-L21C10B145, the versions before CAM-L21C185B156, the versions before CAM-L21C223B133, the versions before CAM-L21C432B210, the versions before CAM-L21C464B170, the versions before CAM-L21C636B245, the versions before Berlin-L21C10B372, the versions before Berlin-L21C185B363, the versions before Berlin-L21C464B137, the versions before Berlin-L23C605B161, the versions before FRD-L09C10B387, the versions before FRD-L09C185B387, the versions before FRD-L09C432B398, the versions before FRD-L09C636B387, the versions before FRD-L19C10B387, the versions before FRD-L19C432B399, the versions before FRD-L19C636B387 have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can disable the boot wizard by enable the talkback function. As a result, the FRP function is bypassed.

Los smartphones Huawei G9 Lite, Honor 5A, Honor 6X y Honor 8 con versiones anteriores a la VNS-L53C605B120CUSTC605D103, versiones anteriores a la CAM-L03C605B143CUSTC605D008, versiones anteriores a la CAM-L21C10B145, versiones anteriores a la CAM-L21C185B156, versiones anteriores a la CAM-L21C223B133, versiones anteriores a la CAM-L21C432B210, versiones anteriores a la CAM-L21C464B170, versiones anteriores a la CAM-L21C636B245, versiones anteriores a la Berlin-L21C10B372, versiones anteriores a la Berlin-L21C185B363, versiones anteriores a la Berlin-L21C464B137, versiones anteriores a la Berlin-L23C605B161, versiones anteriores a la FRD-L09C10B387, versiones anteriores a la FRD-L09C185B387, versiones anteriores a la FRD-L09C432B398, versiones anteriores a la FRD-L09C636B387, versiones anteriores a la FRD-L19C10B387, versiones anteriores a la FRD-L19C432B399 y versiones anteriores a la FRD-L19C636B387 tienen una vulnerabilidad de seguridad de omisión de FRP (Factory Reset Protection). Al reconfigurar el teléfono móvil mediante la función FRP (Factory Reset Protection), un atacante puede deshabilitar el asistente de arranque habilitando la función talkback. Como resultado, se omite la función FRP.

*Credits: N/A
CVSS Scores
Attack Vector
Physical
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
None
Attack Vector
Local
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
Complete
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2018-03-09 CVE Reserved
  • 2018-09-12 CVE Published
  • 2024-07-22 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Huawei
Search vendor "Huawei"
 G9 Lite Firmware
Search vendor "Huawei" for product "G9 Lite Firmware"
 < vns-l53c605b120custc605d103
Search vendor "Huawei" for product "G9 Lite Firmware" and version " < vns-l53c605b120custc605d103"
-
Affected
in Huawei
Search vendor "Huawei"
 G9 Lite
Search vendor "Huawei" for product "G9 Lite"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 5a Firmware
Search vendor "Huawei" for product "Honor 5a Firmware"
 < cam-l03c605b143custc605d008
Search vendor "Huawei" for product "Honor 5a Firmware" and version " < cam-l03c605b143custc605d008"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 5a Firmware
Search vendor "Huawei" for product "Honor 5a Firmware"
 < cam-l21c10b145
Search vendor "Huawei" for product "Honor 5a Firmware" and version " < cam-l21c10b145"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 5a Firmware
Search vendor "Huawei" for product "Honor 5a Firmware"
 < cam-l21c185b156
Search vendor "Huawei" for product "Honor 5a Firmware" and version " < cam-l21c185b156"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 5a Firmware
Search vendor "Huawei" for product "Honor 5a Firmware"
 < cam-l21c223b133
Search vendor "Huawei" for product "Honor 5a Firmware" and version " < cam-l21c223b133"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 5a Firmware
Search vendor "Huawei" for product "Honor 5a Firmware"
 < cam-l21c432b210
Search vendor "Huawei" for product "Honor 5a Firmware" and version " < cam-l21c432b210"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
 < cam-l21c464b170
Search vendor "Huawei" for product "Honor 5a" and version " < cam-l21c464b170"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 5a Firmware
Search vendor "Huawei" for product "Honor 5a Firmware"
 < cam-l21c636b245
Search vendor "Huawei" for product "Honor 5a Firmware" and version " < cam-l21c636b245"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 5a
Search vendor "Huawei" for product "Honor 5a"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 6x Firmware
Search vendor "Huawei" for product "Honor 6x Firmware"
 < berlin-l21c10b372
Search vendor "Huawei" for product "Honor 6x Firmware" and version " < berlin-l21c10b372"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 6x
Search vendor "Huawei" for product "Honor 6x"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 6x Firmware
Search vendor "Huawei" for product "Honor 6x Firmware"
 < berlin-l21c185b363
Search vendor "Huawei" for product "Honor 6x Firmware" and version " < berlin-l21c185b363"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 6x
Search vendor "Huawei" for product "Honor 6x"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 6x Firmware
Search vendor "Huawei" for product "Honor 6x Firmware"
 < berlin-l21c464b137
Search vendor "Huawei" for product "Honor 6x Firmware" and version " < berlin-l21c464b137"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 6x
Search vendor "Huawei" for product "Honor 6x"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 6x Firmware
Search vendor "Huawei" for product "Honor 6x Firmware"
 < berlin-l23c605b161
Search vendor "Huawei" for product "Honor 6x Firmware" and version " < berlin-l23c605b161"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 6x
Search vendor "Huawei" for product "Honor 6x"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 8 Firmware
Search vendor "Huawei" for product "Honor 8 Firmware"
 < frd-l09c10b387
Search vendor "Huawei" for product "Honor 8 Firmware" and version " < frd-l09c10b387"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 8
Search vendor "Huawei" for product "Honor 8"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 8 Firmware
Search vendor "Huawei" for product "Honor 8 Firmware"
 < frd-l09c185b387
Search vendor "Huawei" for product "Honor 8 Firmware" and version " < frd-l09c185b387"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 8
Search vendor "Huawei" for product "Honor 8"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 8 Firmware
Search vendor "Huawei" for product "Honor 8 Firmware"
 < frd-l09c432b398
Search vendor "Huawei" for product "Honor 8 Firmware" and version " < frd-l09c432b398"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 8
Search vendor "Huawei" for product "Honor 8"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 8 Firmware
Search vendor "Huawei" for product "Honor 8 Firmware"
 < frd-l09c636b387
Search vendor "Huawei" for product "Honor 8 Firmware" and version " < frd-l09c636b387"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 8
Search vendor "Huawei" for product "Honor 8"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 8 Firmware
Search vendor "Huawei" for product "Honor 8 Firmware"
 < frd-l19c10b387
Search vendor "Huawei" for product "Honor 8 Firmware" and version " < frd-l19c10b387"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 8
Search vendor "Huawei" for product "Honor 8"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 8 Firmware
Search vendor "Huawei" for product "Honor 8 Firmware"
 < frd-l19c432b399
Search vendor "Huawei" for product "Honor 8 Firmware" and version " < frd-l19c432b399"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 8
Search vendor "Huawei" for product "Honor 8"
--
Safe
Huawei
Search vendor "Huawei"
 Honor 8 Firmware
Search vendor "Huawei" for product "Honor 8 Firmware"
 < frd-l19c636b387
Search vendor "Huawei" for product "Honor 8 Firmware" and version " < frd-l19c636b387"
-
Affected
in Huawei
Search vendor "Huawei"
 Honor 8
Search vendor "Huawei" for product "Honor 8"
--
Safe