cvelist/2018/7xxx/CVE-2018-7991.json

{
   "CVE_data_meta" : {
      "ASSIGNER" : "psirt@huawei.com",
      "ID" : "CVE-2018-7991",
      "STATE" : "PUBLIC"
   },
   "affects" : {
      "vendor" : {
         "vendor_data" : [
            {
               "product" : {
                  "product_data" : [
                     {
                        "product_name" : "Mate10",
                        "version" : {
                           "version_data" : [
                              {
                                 "version_value" : "Versions earlier before ALP-AL00B 8.0.0.110(C00)"
                              }
                           ]
                        }
                     }
                  ]
               },
               "vendor_name" : "Huawei Technologies Co., Ltd."
            }
         ]
      }
   },
   "data_format" : "MITRE",
   "data_type" : "CVE",
   "data_version" : "4.0",
   "description" : {
      "description_data" : [
         {
            "lang" : "eng",
            "value" : "Huawei smartphones Mate10 with versions earlier before ALP-AL00B 8.0.0.110(C00) have a Factory Reset Protection (FRP) bypass vulnerability. The system does not sufficiently verify the permission, an attacker uses a data cable to connect the smartphone to the computer and then perform some specific operations. Successful exploit could allow the attacker bypass the FRP protection to access the system setting page."
         }
      ]
   },
   "problemtype" : {
      "problemtype_data" : [
         {
            "description" : [
               {
                  "lang" : "eng",
                  "value" : "FRP bypass"
               }
            ]
         }
      ]
   },
   "references" : {
      "reference_data" : [
         {
            "name" : "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180912-01-smartphone-en",
            "refsource" : "CONFIRM",
            "url" : "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180912-01-smartphone-en"
         }
      ]
   }
}
- Synchronized data. 2018-03-09 10:03:14 -05:00			`{`
			`"CVE_data_meta" : {`
- Added submission from Huawei from 2018-09-17. 2018-09-18 08:16:01 -04:00			`"ASSIGNER" : "psirt@huawei.com",`
- Synchronized data. 2018-03-09 10:03:14 -05:00			`"ID" : "CVE-2018-7991",`
- Added submission from Huawei from 2018-09-17. 2018-09-18 08:16:01 -04:00			`"STATE" : "PUBLIC"`
			`},`
			`"affects" : {`
			`"vendor" : {`
			`"vendor_data" : [`
			`{`
			`"product" : {`
			`"product_data" : [`
			`{`
			`"product_name" : "Mate10",`
			`"version" : {`
			`"version_data" : [`
			`{`
			`"version_value" : "Versions earlier before ALP-AL00B 8.0.0.110(C00)"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name" : "Huawei Technologies Co., Ltd."`
			`}`
			`]`
			`}`
- Synchronized data. 2018-03-09 10:03:14 -05:00			`},`
			`"data_format" : "MITRE",`
			`"data_type" : "CVE",`
			`"data_version" : "4.0",`
			`"description" : {`
			`"description_data" : [`
			`{`
			`"lang" : "eng",`
- Added submission from Huawei from 2018-09-17. 2018-09-18 08:16:01 -04:00			`"value" : "Huawei smartphones Mate10 with versions earlier before ALP-AL00B 8.0.0.110(C00) have a Factory Reset Protection (FRP) bypass vulnerability. The system does not sufficiently verify the permission, an attacker uses a data cable to connect the smartphone to the computer and then perform some specific operations. Successful exploit could allow the attacker bypass the FRP protection to access the system setting page."`
			`}`
			`]`
			`},`
			`"problemtype" : {`
			`"problemtype_data" : [`
			`{`
			`"description" : [`
			`{`
			`"lang" : "eng",`
			`"value" : "FRP bypass"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references" : {`
			`"reference_data" : [`
			`{`
- Synchronized data. 2018-09-18 09:05:10 -04:00			`"name" : "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180912-01-smartphone-en",`
			`"refsource" : "CONFIRM",`
- Added submission from Huawei from 2018-09-17. 2018-09-18 08:16:01 -04:00			`"url" : "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180912-01-smartphone-en"`
- Synchronized data. 2018-03-09 10:03:14 -05:00			`}`
			`]`
			`}`
			`}`