Vulnerabilities > CVE-2018-7929 - Incorrect Authorization vulnerability in Huawei Mate RS Firmware

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

huawei

CWE-863

NVD

Published: 2018-09-18

Updated: 2019-10-03

Summary

Huawei Mate RS smartphones with the versions before NEO-AL00D 8.1.0.167(C786) have a lock-screen bypass vulnerability. An attacker could unlock and use the phone through certain operations.

Vulnerable Configurations

Part	Description	Count
OS	Huawei Huawei Mate RS Firmware -	1
Hardware	Huawei Huawei Mate RS -	1

Common Weakness Enumeration (CWE)

CWE-863 - Incorrect Authorization

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180914-01-smartphone-en