Unknown
CVE-2017-2721
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
Unknown
(0 users assessed)
Unknown
(0 users assessed)Unknown
Unknown
Unknown
MITRE ATT&CK
Collection
Command and Control
Credential Access
Defense Evasion
Discovery
Execution
Exfiltration
Impact
Initial Access
Lateral Movement
Persistence
Privilege Escalation
Topic Tags
Description
Some Huawei smart phones with software Berlin-L21C10B130,Berlin-L21C185B133,Berlin-L21HNC10B131,Berlin-L21HNC185B140,Berlin-L21HNC432B151,Berlin-L22C636B160,Berlin-L22HNC636B130,Berlin-L22HNC675B150CUSTC675D001,Berlin-L23C605B131,Berlin-L24HNC567B110,FRD-L02C432B120,FRD-L02C635B130,FRD-L02C675B170CUSTC675D001,FRD-L04C567B162,FRD-L04C605B131,FRD-L09C10B130,FRD-L09C185B130,FRD-L09C432B131,FRD-L09C636B130,FRD-L14C567B162,FRD-L19C10B130,FRD-L19C432B131,FRD-L19C636B130 have a factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Swype Keyboard and can perform some operations to update the Google account. As a result, the FRP function is bypassed.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
General Information
Vendors
Products
- berlin-l21 firmware berlin-l21c10b130,
- berlin-l21 firmware berlin-l21c185b133,
- berlin-l21hn firmware berlin-l21hnc10b131,
- berlin-l21hn firmware berlin-l21hnc185b140,
- berlin-l21hn firmware berlin-l21hnc432b151,
- berlin-l22 firmware berlin-l22c636b160,
- berlin-l22hn firmware berlin-l22hnc636b130,
- berlin-l22hn firmware berlin-l22hnc675b150custc675d001,
- berlin-l23 firmware berlin-l23c605b131,
- berlin-l24hn firmware berlin-l24hnc567b110,
- frd-l02 firmware frd-l02c432b120,
- frd-l02 firmware frd-l02c635b130,
- frd-l02 firmware frd-l02c675b170custc675d001,
- frd-l04 firmware frd-l04c567b162,
- frd-l04 firmware frd-l04c605b131,
- frd-l09 firmware frd-l09c10b130,
- frd-l09 firmware frd-l09c185b130,
- frd-l09 firmware frd-l09c432b131,
- frd-l09 firmware frd-l09c636b130,
- frd-l14 firmware frd-l14c567b162,
- frd-l19 firmware frd-l19c10b130,
- frd-l19 firmware frd-l19c432b131,
- frd-l19 firmware frd-l19c636b130
References
Additional Info
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
