CVE-2014-9135

Currently unrated

Key Information:

Vendor: Huawei
Status: P7-l10 Firmware
Vendor: CVE Published:; 19 December 2014

Summary

The PackageInstaller module in Huawei P7-L10 smartphones before V100R001C00B136 allows remote attackers to spoof the origin website and bypass the website whitelist protection mechanism via a crafted package.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/99283

vdb-entryx_refsource_XF

http://www.huawei.com/en/security/psirt/security-bulletin...

x_refsource_CONFIRM

Timeline

Vulnerability published
Dec 19, 2014
Vulnerability Reserved
Nov 28, 2014