← back
CVE-2018-7957

CVE-2018-7957

EPSS 0.2%
Huawei smartphones with software Victoria-AL00 8.0.0.336a(C00) have an information leakage vulnerability. Because an interface does not verify authorization correctly, attackers can exploit an application with the authorization of phone state to obtain user location additionally.
Affected products
Huawei Technologies Co., Ltd. · Victoria-AL00

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180704-01-smartphone-en