The Files APP 7.1.1.308 and earlier versions in some Huawei mobile phones has a vulnerability of plaintext storage of users' Safe passwords. An attacker with the root privilege of an Android system could forge the Safe to read users' plaintext Safe passwords, leading to information leak.
References
Link | Resource |
---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-01-files-en | Vendor Advisory |
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-01-files-en | Vendor Advisory |
Configurations
History
21 Nov 2024, 03:24
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-01-files-en - Vendor Advisory |
Information
Published : 2017-11-22 19:29
Updated : 2024-11-21 03:24
NVD link : CVE-2017-2723
Mitre link : CVE-2017-2723
CVE.ORG link : CVE-2017-2723
JSON object : View
Products Affected
huawei
- files
CWE
CWE-312
Cleartext Storage of Sensitive Information