Permission Bypass Vulnerability in Huawei Mate8 Devices
CVE-2016-5231

7.8HIGH

Key Information:

Vendor: Huawei
Status: Mate 8 Firmware
Vendor: CVE Published:; 30 June 2016

Summary

Certain models of the Huawei Mate8 smartphone are susceptible to a vulnerability where attackers can circumvent permission checks through a specifically crafted application. This flaw can lead to unauthorized deletion of user data, compromising the integrity and confidentiality of users' information. Users of affected versions are advised to update their devices to mitigate the risk.

References

http://www.securityfocus.com/bid/91556

vdb-entryx_refsource_BID

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jun 30, 2016
Vulnerability Reserved
Jun 1, 2016