Remote Code Execution Vulnerability in Huawei HiSuite Software
CVE-2016-4086

5.3MEDIUM

Key Information:

Vendor: Huawei
Status: Hisuite
Vendor: CVE Published:; 30 June 2016

What is CVE-2016-4086?

The vulnerability in Huawei HiSuite allows remote attackers to exploit the software to install arbitrary applications on connected Android devices. This flaw affects different versions of HiSuite available in both the Chinese and international markets before the specified updates, creating a significant risk for users who may unknowingly install harmful apps as a result.

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/92622

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 30, 2016
Vulnerability Reserved
Apr 26, 2016