CVE-2018-7947
CVE-2018-7947
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS —EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
31 Jul 2018Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Huawei mobile phones with versions earlier before Emily-AL00A 8.1.0.153(C00) have an authentication bypass vulnerability. An attacker could trick the user to connect to a malicious device. In the debug mode, the malicious software in the device may exploit the vulnerability to bypass some specific function. Successful exploit may cause some malicious applications to be installed in the mobile phones.
Affected products
Huawei Technologies Co., Ltd. · Emily-AL00AWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →