← back
CVE-2017-2715

CVE-2017-2715

EPSS 0.3%
The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to information leak.
Affected products
Huawei Technologies Co., Ltd. · Files £¨Files is the smartphone APP£©

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170425-01-files-en