FRP Bypass Vulnerability in Huawei Mate10 Pro Smartphones
CVE-2018-7990

4.6MEDIUM

Key Information:

Vendor: McAfee
Status: Mate10 Pro
Vendor: CVE Published:; 4 September 2018

What is CVE-2018-7990?

The Huawei Mate10 Pro contains a vulnerability that allows an attacker to bypass Factory Reset Protection (FRP) during the device reset process. By executing a series of voice commands and keyboard inputs, a malicious actor can exploit this weakness, enabling them to access the device without authorization. This can lead to unauthorized use of the phone and potential compromise of personal data, highlighting the need for users to update their devices to mitigate this security issue.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Mate10 Pro The versions before 8.1.0.326(C00)

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 4, 2018
Vulnerability Reserved
Mar 9, 2018

JSON

McAfee

What is CVE-2018-7990?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.