2 matches found
CVE-2017-2708
CVE-2017-2708 describes an authentication bypass in the Find Phone function of certain Huawei/Nice smartphones running versions earlier than Nice-AL00C00B0135. The underlying issue is missing authentication for the Find Phone feature, allowing an unauthenticated attacker to bypass the function an...
Security Advisory - Authentication Bypass Vulnerability in the 'Find Phone' Function of some Huawei Smart Phones
The 'Find Phone' function of some Huawei smart phones has an authentication bypass vulnerability. An unauthenticated attacker may wipe and factory reset the phone by special steps. Due to missing authentication of the 'Find Phone' function, an attacker may exploit the vulnerability to bypass the...