Vulnerability CVE-2017-2721


Published: 2017-11-22

Description:
Some Huawei smart phones with software Berlin-L21C10B130,Berlin-L21C185B133,Berlin-L21HNC10B131,Berlin-L21HNC185B140,Berlin-L21HNC432B151,Berlin-L22C636B160,Berlin-L22HNC636B130,Berlin-L22HNC675B150CUSTC675D001,Berlin-L23C605B131,Berlin-L24HNC567B110,FRD-L02C432B120,FRD-L02C635B130,FRD-L02C675B170CUSTC675D001,FRD-L04C567B162,FRD-L04C605B131,FRD-L09C10B130,FRD-L09C185B130,FRD-L09C432B131,FRD-L09C636B130,FRD-L14C567B162,FRD-L19C10B130,FRD-L19C432B131,FRD-L19C636B130 have a factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Swype Keyboard and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

Type:

CWE-287

(Improper Authentication)

CVSS2 => (AV:L/AC:L/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None
Affected software
Huawei -> Berlin-l21 firmware 
Huawei -> Berlin-l21hn firmware 
Huawei -> Berlin-l22 firmware 
Huawei -> Berlin-l22hn firmware 
Huawei -> Berlin-l23 firmware 
Huawei -> Berlin-l24hn firmware 
Huawei -> Frd-l02 firmware 
Huawei -> Frd-l04 firmware 
Huawei -> Frd-l09 firmware 
Huawei -> Frd-l14 firmware 
Huawei -> Frd-l19 firmware 

 References:
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170920-01-frpbypass-en

Copyright 2024, cxsecurity.com

 

Back to Top