The Files APP 7.1.1.308 and earlier versions in some Huawei mobile phones has a vulnerability of plaintext storage of users' Safe passwords. An attacker with the root privilege of an Android system could forge the Safe to read users' plaintext Safe passwords, leading to information leak.
References
Link | Resource |
---|---|
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-01-files-en | Vendor Advisory |
Configurations
History
No history.
Information
Published : 2017-11-22 19:29
Updated : 2024-02-28 16:04
NVD link : CVE-2017-2723
Mitre link : CVE-2017-2723
CVE.ORG link : CVE-2017-2723
JSON object : View
Products Affected
huawei
- files
CWE
CWE-312
Cleartext Storage of Sensitive Information