MEDIUM 5.5
CVE-2017-8216
Warsaw Huawei Smart phones with software of versions earlier than Warsaw-AL00C00B180, versions earlier than Warsaw-TL10C01B180 have a permission control vulnerability. Due to improper authorization on specific processes, an attacker with the root privilege of a mobile Android system can exploit this vulnerability to obtain some information of the user.
CVSS v3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerable CPE configurations
| Vendor | Product | Platform | Versions | CPE 2.3 URI |
|---|---|---|---|---|
| huawei | p10_lite_firmware | Android | <warsaw-al00c00b180 | cpe:2.3:o:huawei:p10_lite_firmware:*:*:*:*:*:android:*:* |
| huawei | p10_lite_firmware | Android | <warsaw-tl10c01b180 | cpe:2.3:o:huawei:p10_lite_firmware:*:*:*:*:*:android:*:* |