CVE-2018-7910
Last modified
CVE-2018-7910 is a vulnerability of currently unknown severity. Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone.. EPSS estimates a 0.28% chance of exploitation in the next 30 days.
Description
Some Huawei smartphones ALP-AL00B 8.0.0.118D(C00), ALP-TL00B 8.0.0.118D(C01), BLA-AL00B 8.0.0.118D(C00), BLA-L09C 8.0.0.127(C432), 8.0.0.128(C432), 8.0.0.137(C432), BLA-L29C 8.0.0.129(C432), 8.0.0.137(C432) have an authentication bypass vulnerability. When the attacker obtains the user's smartphone, the vulnerability can be used to replace the start-up program so that the attacker can obtain the information in the smartphone and achieve the purpose of controlling the smartphone.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Huawei | Alp-Al00b Firmware | 8.0.0.1.18d\(c00\) |
| Huawei | Alp-Tl00b Firmware | 8.0.0.1.18d\(c01\) |
| Huawei | Bla-Al00b Firmware | 8.0.0.1.18d\(c00\) |
| Huawei | Bla-L09c Firmware | 8.0.0.127\(c432\) |
| Huawei | Bla-L09c Firmware | 8.0.0.128\(c432\) |
| Huawei | Bla-L09c Firmware | 8.0.0.137\(c432\) |
| Huawei | Bla-L29c Firmware | 8.0.0.127\(c432\) |
| Huawei | Bla-L29c Firmware | 8.0.0.137\(c432\) |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2018-7910?
How severe is CVE-2018-7910?
How do I fix CVE-2018-7910?
Are you affected by CVE-2018-7910?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST