Lucene search

Huawei TechnologiesHUAWEI-SA-20170125-01-EMUI

HistoryJan 25, 2017 - 12:00 a.m.

Security Advisory - Two Security Vulnerabilities in Huawei EMUI

2017-01-2500:00:00

Huawei Technologies

www.huawei.com

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

26.7%

JSON

Huawei EMUI3.1 has two vulnerabilities.

The Keyguard application in Huawei EMUI3.1 has a privilege elevation vulnerability due to insufficient validation on specific parameters. An attacker may trick a user into installing a malicious application. Successful exploit could allow the attacker to launch command injection to gain elevated privileges. (Vulnerability ID: HWPSIRT-2017-01086)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2017-2692.

Huawei EMUI3.1 has a path traversal vulnerability due to insufficient path check during the decompression of files of specific types. An attacker may trick a user into downloading and installing malicious software. Successful exploit could allow the attacker to decompress malicious files into a target path. (Vulnerability ID: HWPSIRT-2017-01097)

This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2017-2693.

Huawei has released software updates to fix these two vulnerabilities. This advisory is available at the following link: <http://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20170125-01-emui-cn>

Affected configurations

Vulners

Node

huaweip8_lite_firmwareRange<ALE-L02C635B140

huaweip8_lite_firmwareRange<ALE-L02C636B140

huaweip8_lite_firmwareRange<ALE-L21C10B150

huaweip8_lite_firmwareRange<ALE-L21C185B200

huaweip8_lite_firmwareRange<ALE-L21C432B214

huaweip8_lite_firmwareRange<ALE-L21C464B150

huaweip8_lite_firmwareRange<ALE-L21C636B200

huaweip8_lite_firmwareRange<ALE-L23C605B190

huaweip8_lite_firmwareRange<ALE-TL00C01B250

huaweip8_lite_firmwareRange<ALE-UL00C00B250

huaweimate_7_firmwareRange<MT7-L09C605B325

huaweimate_7_firmwareRange<MT7-L09C900B339

huaweimate_7_firmwareRange<MT7-TL10C900B339

huaweimate_s_firmwareRange<CRR-CL00C92B172

huaweimate_s_firmwareRange<CRR-L09C432B180

huaweimate_s_firmwareRange<CRR-TL00C01B172

huaweimate_s_firmwareRange<CRR-UL00C00B172

huaweimate_s_firmwareRange<CRR-UL20C432B171

huaweip8_firmwareRange<GRA-CL00C92B230

huaweip8_firmwareRange<GRA-L09C432B222

huaweip8_firmwareRange<GRA-TL00C01B230SP01

huaweip8_firmwareRange<GRA-UL00C00B230

huaweip8_firmwareRange<GRA-UL00C10B201

huaweip8_firmwareRange<GRA-UL00C432B220

huaweihonor_6_firmwareRange<H60-L04C10B523

huaweihonor_6_firmwareRange<H60-L04C185B523

huaweihonor_6_firmwareRange<H60-L04C636B527

huaweihonor_6_firmwareRange<H60-L04C900B530

huaweihonor_7_firmwareRange<PLK-AL10C00B220

huaweihonor_7_firmwareRange<PLK-AL10C92B220

huaweihonor_7_firmwareRange<PLK-CL00C92B220

huaweihonor_7_firmwareRange<PLK-L01C10B140

huaweihonor_7_firmwareRange<PLK-L01C185B130

huaweihonor_7_firmwareRange<PLK-L01C432B187

huaweihonor_7_firmwareRange<PLK-L01C432B190

huaweihonor_7_firmwareRange<PLK-L01C636B130

huaweihonor_7_firmwareRange<PLK-TL00C01B220

huaweihonor_7_firmwareRange<PLK-TL01HC01B220

huaweihonor_7_firmwareRange<PLK-UL00C17B220

huaweishotx_firmwareRange<ATH-AL00C00B210

huaweishotx_firmwareRange<ATH-AL00C92B200

huaweishotx_firmwareRange<ATH-CL00C92B210

huaweishotx_firmwareRange<ATH-TL00C01B210

huaweishotx_firmwareRange<ATH-TL00HC01B210

huaweishotx_firmwareRange<ATH-UL00C00B210

huaweig8_firmwareRange<RIO-AL00C00B220

huaweig8_firmwareRange<RIO-CL00C92B220

huaweig8_firmwareRange<RIO-TL00C01B220

huaweig8_firmwareRange<RIO-UL00C00B220

VendorProductVersionCPE
huaweip8_lite_firmware*cpe:2.3:o:huawei:p8_lite_firmware:*:*:*:*:*:*:*:*
huaweimate_7_firmware*cpe:2.3:o:huawei:mate_7_firmware:*:*:*:*:*:*:*:*
huaweimate_s_firmware*cpe:2.3:a:huawei:mate_s_firmware:*:*:*:*:*:*:*:*
huaweip8_firmware*cpe:2.3:o:huawei:p8_firmware:*:*:*:*:*:*:*:*
huaweihonor_6_firmware*cpe:2.3:o:huawei:honor_6_firmware:*:*:*:*:*:*:*:*
huaweihonor_7_firmware*cpe:2.3:o:huawei:honor_7_firmware:*:*:*:*:*:*:*:*
huaweishotx_firmware*cpe:2.3:o:huawei:shotx_firmware:*:*:*:*:*:*:*:*
huaweig8_firmware*cpe:2.3:o:huawei:g8_firmware:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	p8_lite_firmware	*	cpe:2.3:o:huawei:p8_lite_firmware::::::::
huawei	mate_7_firmware	*	cpe:2.3:o:huawei:mate_7_firmware::::::::
huawei	mate_s_firmware	*	cpe:2.3:a:huawei:mate_s_firmware::::::::
huawei	p8_firmware	*	cpe:2.3:o:huawei:p8_firmware::::::::
huawei	honor_6_firmware	*	cpe:2.3:o:huawei:honor_6_firmware::::::::
huawei	honor_7_firmware	*	cpe:2.3:o:huawei:honor_7_firmware::::::::
huawei	shotx_firmware	*	cpe:2.3:o:huawei:shotx_firmware::::::::
huawei	g8_firmware	*	cpe:2.3:o:huawei:g8_firmware::::::::

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

26.7%

JSON

Related for HUAWEI-SA-20170125-01-EMUI