HIGH🇵🇱 Wersja polska

CVE-2017-2699

CVSS 7.8v3.0pub. 2017-11-22upd. 2026-05-13

The Huawei Themes APP in versions earlier than PLK-UL00C17B385, versions earlier than CRR-L09C432B380, versions earlier than LYO-L21C577B128 has a privilege elevation vulnerability. An attacker could exploit this vulnerability to upload theme packs containing malicious files and trick users into installing the theme packets, resulting in the execution of arbitrary code.

CVSS Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Huawei Honor 7

    HW
    Huawei
    wszystkie wersje
  • Huawei Honor 7 Firmware

    OS
    Huawei
    < plk-ul00c17b385
  • Huawei Lyo L21

    HW
    Huawei
    wszystkie wersje
  • Huawei Lyo L21 Firmware

    OS
    Huawei
    < lyo-l21c577b128
  • Huawei Mate S

    HW
    Huawei
    wszystkie wersje
  • Huawei Mate S Firmware

    OS
    Huawei
    < crr-l09c432b380
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2017-17172HIGH7.3ten sam produkt

Huawei smart phones LYO-L21 with software LYO-L21C479B107, LYO-L21C479B107 have a privilege escalation vulnera...

CVE-2017-2692HIGH7.8ten sam produkt

The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C...

CVE-2017-2693HIGH7.8ten sam produkt

ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C10B150 and earlier versions,...

CVE-2016-8792HIGH7.1ten sam produkt

Huawei Mate 8 phones with software Versions before NXT-AL10C00B386, Versions before NXT-CL00C92B386, Versions ...

CVE-2016-8768HIGH7.8ten sam produkt

Huawei Honor 6, Honor 6 Plus, Honor 7 phones with software versions earlier than 6.9.16 could allow attackers ...