HIGH🇬🇧 English

CVE-2017-2699

CVSS 7.8v3.0pub. 2017-11-22upd. 2026-05-13

The Huawei Themes APP in versions earlier than PLK-UL00C17B385, versions earlier than CRR-L09C432B380, versions earlier than LYO-L21C577B128 has a privilege elevation vulnerability. An attacker could exploit this vulnerability to upload theme packs containing malicious files and trick users into installing the theme packets, resulting in the execution of arbitrary code.

oryginał EN
CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Huawei Honor 7

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor 7 Firmware

    OS
    Huawei
    < plk-ul00c17b385
  • Huawei Lyo L21

    HW
    Huawei
    wszystkie wersje
  • Huawei Lyo L21 Firmware

    OS
    Huawei
    < lyo-l21c577b128
  • Huawei Mate S

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate S Firmware

    OS
    Huawei
    < crr-l09c432b380
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2017-17172HIGH7.3ten sam produkt

Huawei smart phones LYO-L21 with software LYO-L21C479B107, LYO-L21C479B107 have a privilege escalation vulnera...

CVE-2017-2692HIGH7.8ten sam produkt

The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C...

CVE-2017-2693HIGH7.8ten sam produkt

ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C10B150 and earlier versions,...

CVE-2016-8792HIGH7.1ten sam produkt

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions ...

CVE-2016-8768HIGH7.8ten sam produkt

Huawei Honor 6, Honor 6 Plus, Honor 7 phones with software versions earlier than 6.9.16 could allow attackers ...