Information disclosure

2017-11-2219:29:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

43.7%

JSON

Smarthome 1.0.2.364 and earlier versions,HiAPP 7.3.0.303 and earlier versions,HwParentControl 2.0.0 and earlier versions,HwParentControlParent 5.1.0.12 and earlier versions,Crowdtest 1.5.3 and earlier versions,HiWallet 8.0.0.301 and earlier versions,Huawei Pay 8.0.0.300 and earlier versions,Skytone 8.1.2.300 and earlier versions,HwCloudDrive(EMUI6.0) 8.0.0.307 and earlier versions,HwPhoneFinder(EMUI6.0) 9.3.0.310 and earlier versions,HwPhoneFinder(EMUI5.1) 9.2.2.303 and earlier versions,HiCinema 8.0.2.300 and earlier versions,HuaweiWear 21.0.0.360 and earlier versions,HiHealthApp 3.0.3.300 and earlier versions have an information exposure vulnerability. Encryption keys are stored in the system. The attacker can implement reverse engineering to obtain the encryption keys, causing information exposure.

CPENameOperatorVersion
crowdtestle1.5.3
hiapple7.3.0.303
hicinemale8.0.2.300
hihealthapple3.0.3.300
hiwalletle8.0.0.301
huawei_payle8.0.0.300
huaweiwearle21.0.0.360
hwclouddrive\\(emui6.0\\)le8.0.0.307
hwparentcontrolle2.0.0
hwparentcontrolparentle5.1.0.12

Name	Operator	Version
crowdtest	le	1.5.3
hiapp	le	7.3.0.303
hicinema	le	8.0.2.300
hihealthapp	le	3.0.3.300
hiwallet	le	8.0.0.301
huawei_pay	le	8.0.0.300
huaweiwear	le	21.0.0.360
hwclouddrive\\(emui6.0\\)	le	8.0.0.307
hwparentcontrol	le	2.0.0
hwparentcontrolparent	le	5.1.0.12