2 matches found
CVE-2017-2699
CVE-2017-2699 affects the Huawei Themes app. A privilege-elevation vulnerability arises from lack of validation of uploaded theme packs, allowing an attacker to deliver malicious theme files that, when installed, could execute arbitrary code with elevated privileges. Affected are Huawei devices w...
Security Advisory - Privilege Elevation Vulnerability Caused by Arbitrary File Upload in Huawei Themes
The Huawei Themes APP in some Huawei products has a privilege elevation vulnerability due to the lack of theme pack check. An attacker could exploit this vulnerability to upload theme packs containing malicious files and trick users into installing the theme packets, resulting in the execution of...