Vulnerabilities > CVE-2018-7929 - Incorrect Authorization vulnerability in Huawei Mate RS Firmware 9.1.0.321(C786E320R1P1T8)

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

huawei

CWE-863

NVD

Published: 2018-09-18

Updated: 2019-10-03

Summary

Huawei Mate RS smartphones with the versions before NEO-AL00D 8.1.0.167(C786) have a lock-screen bypass vulnerability. An attacker could unlock and use the phone through certain operations.

Vulnerable Configurations

Part	Description	Count
OS	Huawei Huawei Mate RS Firmware - Huawei Mate RS Firmware 9.1.0.321\(C786E320R1P1T8\)	2
Hardware	Huawei Huawei Mate RS -	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180914-01-smartphone-en