Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistHuaweiCVELIST:CVE-2018-7901
HistoryApr 30, 2018 - 2:00 p.m.

CVE-2018-7901

2018-04-3014:00:00
huawei
www.cve.org
1

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.5%

JSON

RCS module in Huawei ALP-AL00B smart phones with software versions earlier than 8.0.0.129, BLA-AL00B smart phones with software versions earlier than 8.0.0.129 has a remote control vulnerability. An attacker can trick a user to install a malicious application. When the application connects with RCS for the first time, it needs user to manually click to agree. In addition, the attacker needs to obtain the key that RCS uses to authenticate the application. Successful exploitation may cause the attacker to control keyboard remotely.

CNA Affected

[
  {
    "product": "ALP-AL00B, BLA-AL00B",
    "vendor": "Huawei Technologies Co., Ltd.",
    "versions": [
      {
        "status": "affected",
        "version": "ALP-AL00B, earlier versions than 8.0.0.129, BLA-AL00B, earlier versions than 8.0.0.129"
      }
    ]
  }
]

Related

nvd 1
cve 1
prion 1
huawei 1
nvd
nvd
CVE-2018-7901
2018-04-30 14:29:00
cve
cve
CVE-2018-7901
2018-04-30 14:29:00
prion
prion
Design/Logic Flaw
2018-04-30 14:29:00
huawei
huawei
Security Advisory - Remote Control Vulnerability in RCS Module of Some Huawei Smart Phones
2018-04-25 00:00:00

4.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.5%

JSON
Related for CVELIST:CVE-2018-7901
nvd1cve1prion1huawei1