CVE-2018-7947

low

Description

Huawei mobile phones with versions earlier before Emily-AL00A 8.1.0.153(C00) have an authentication bypass vulnerability. An attacker could trick the user to connect to a malicious device. In the debug mode, the malicious software in the device may exploit the vulnerability to bypass some specific function. Successful exploit may cause some malicious applications to be installed in the mobile phones.

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180720-01-mobile-en

Details

Source: Mitre, NVD

Published: 2018-07-31

Updated: 2026-06-17

Risk Information

CVSS v2

Base Score: 4.4

Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 3.9

Vector: CVSS:3.0/AV:P/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L

Severity: Low

EPSS

EPSS: 0.00031

Detections

Analytics