CVE-2017-2721

Published: Nov 22, 2017 Last Modified: Apr 20, 2025 EU-VD ID: EUVD-2017-11864 Aliases: GSD-2017-2721
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 4,6
Source: [email protected]
Attack Vector: physical
Attack Complexity: low
Privileges Required: none
User Interaction: none
Scope: unchanged
Confidentiality: none
Integrity: high
Availability: none
LOW 2,1
Source: [email protected]
Access Vector: local
Access Complexity: low
Authentication: none
Confidentiality: none
Integrity: partial
Availability: none

Description

AI Translation Available

Some Huawei smart phones with software Berlin-L21C10B130,Berlin-L21C185B133,Berlin-L21HNC10B131,Berlin-L21HNC185B140,Berlin-L21HNC432B151,Berlin-L22C636B160,Berlin-L22HNC636B130,Berlin-L22HNC675B150CUSTC675D001,Berlin-L23C605B131,Berlin-L24HNC567B110,FRD-L02C432B120,FRD-L02C635B130,FRD-L02C675B170CUSTC675D001,FRD-L04C567B162,FRD-L04C605B131,FRD-L09C10B130,FRD-L09C185B130,FRD-L09C432B131,FRD-L09C636B130,FRD-L14C567B162,FRD-L19C10B130,FRD-L19C432B131,FRD-L19C636B130 have a factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Swype Keyboard and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score
0,0002
Percentile
0,0th
Updated

EPSS Score Trend (Last 90 Days)

287

Improper Authentication

Draft
Abstraction: Class Structure: Simple
Common Consequences
Security Scopes Affected:
Integrity Confidentiality Availability Access Control
Potential Impacts:
Read Application Data Gain Privileges Or Assume Identity Execute Unauthorized Code Or Commands
Applicable Platforms
Technologies: ICS/OT, Not Technology-Specific, Web Based
Likelihood of Exploit: High
View CWE Details
Operating System

Frd-L02 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L02 Firmware
Version frd-l02c675b170custc675d001
cpe:2.3:o:huawei:frd-l02_firmware:frd-l02c675b170custc675d001:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L04 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L04 Firmware
Version frd-l04c567b162
cpe:2.3:o:huawei:frd-l04_firmware:frd-l04c567b162:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L19 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L19 Firmware
Version frd-l19c432b131
cpe:2.3:o:huawei:frd-l19_firmware:frd-l19c432b131:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L21Hn Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L21Hn Firmware
Version berlin-l21hnc432b151
cpe:2.3:o:huawei:berlin-l21hn_firmware:berlin-l21hnc432b151:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L02 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L02 Firmware
Version frd-l02c635b130
cpe:2.3:o:huawei:frd-l02_firmware:frd-l02c635b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L09 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L09 Firmware
Version frd-l09c432b131
cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c432b131:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L21 Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L21 Firmware
Version berlin-l21c10b130
cpe:2.3:o:huawei:berlin-l21_firmware:berlin-l21c10b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L19 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L19 Firmware
Version frd-l19c10b130
cpe:2.3:o:huawei:frd-l19_firmware:frd-l19c10b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L21 Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L21 Firmware
Version berlin-l21c185b133
cpe:2.3:o:huawei:berlin-l21_firmware:berlin-l21c185b133:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L19 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L19 Firmware
Version frd-l19c636b130
cpe:2.3:o:huawei:frd-l19_firmware:frd-l19c636b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L09 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L09 Firmware
Version frd-l09c185b130
cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c185b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L22Hn Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L22Hn Firmware
Version berlin-l22hnc675b150custc675d001
cpe:2.3:o:huawei:berlin-l22hn_firmware:berlin-l22hnc675b150custc675d001:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L09 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L09 Firmware
Version frd-l09c636b130
cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c636b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L21Hn Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L21Hn Firmware
Version berlin-l21hnc10b131
cpe:2.3:o:huawei:berlin-l21hn_firmware:berlin-l21hnc10b131:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L02 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L02 Firmware
Version frd-l02c432b120
cpe:2.3:o:huawei:frd-l02_firmware:frd-l02c432b120:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L23 Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L23 Firmware
Version berlin-l23c605b131
cpe:2.3:o:huawei:berlin-l23_firmware:berlin-l23c605b131:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L24Hn Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L24Hn Firmware
Version berlin-l24hnc567b110
cpe:2.3:o:huawei:berlin-l24hn_firmware:berlin-l24hnc567b110:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L22 Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L22 Firmware
Version berlin-l22c636b160
cpe:2.3:o:huawei:berlin-l22_firmware:berlin-l22c636b160:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L14 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L14 Firmware
Version frd-l14c567b162
cpe:2.3:o:huawei:frd-l14_firmware:frd-l14c567b162:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L09 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L09 Firmware
Version frd-l09c10b130
cpe:2.3:o:huawei:frd-l09_firmware:frd-l09c10b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Frd-L04 Firmware by Huawei

Product Information
Vendor Huawei
Product Frd-L04 Firmware
Version frd-l04c605b131
cpe:2.3:o:huawei:frd-l04_firmware:frd-l04c605b131:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L22Hn Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L22Hn Firmware
Version berlin-l22hnc636b130
cpe:2.3:o:huawei:berlin-l22hn_firmware:berlin-l22hnc636b130:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
Operating System

Berlin-L21Hn Firmware by Huawei

Product Information
Vendor Huawei
Product Berlin-L21Hn Firmware
Version berlin-l21hnc185b140
cpe:2.3:o:huawei:berlin-l21hn_firmware:berlin-l21hnc185b140:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
http://www.huawei.com/en/psirt/security-advisories/huawei-s…
Issue Tracking Vendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170920-01-frpbyp…
http://www.huawei.com/en/psirt/security-advisories/huawei-s…
Issue Tracking Vendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170920-01-frpbyp…