CVE-2018-7928

2018-10-09T14:29:00
ID CVE-2018-7928
Type cve
Reporter psirt@huawei.com
Modified 2020-02-24T15:02:00

Description

There is a security vulnerability which could lead to Factory Reset Protection (FRP) bypass in the MyCloud APP with the versions before 8.1.2.303 installed on some Huawei smart phones. When re-configuring the mobile phone using the FRP function, an attacker can replace the old account with a new one through special steps by exploit this vulnerability. As a result, the FRP function is bypassed.