| ID |
CVE-2017-8161
|
| Sažetak |
EVA-L09 smartphones with software Earlier than EVA-L09C25B150CUSTC25D003 versions,Earlier than EVA-L09C440B140 versions,Earlier than EVA-L09C464B361 versions,Earlier than EVA-L09C675B320CUSTC675D004 versions have Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the Swype and can perform some operations to update the Google account. As a result, the FRP function is bypassed. |
| Reference |
|
| CVSS |
| Base: | 4.9 |
| Impact: | 6.9 |
| Exploitability: | 3.9 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
LOW |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| NONE |
COMPLETE |
NONE |
|
| CVSS vektor |
AV:L/AC:L/Au:N/C:N/I:C/A:N |
| Zadnje važnije ažuriranje |
03-10-2019 - 00:03 |
| Objavljeno |
22-11-2017 - 19:29 |
