Vulnerability-Lookup

CNVD-2017-01537

Vulnerability from cnvd - Published: 2017-02-20

Title

Huawei Smart Phones本地身份验证绕过漏洞

Description

Huawei Nice是中国华为（Huawei）公司的一款智能手机。 Huawei Smart Phones存在本地身份验证绕过漏洞。攻击者可以通过特定的操作步骤，将手机刷机或恢复出厂设置。由于“手机找回”功能鉴权缺失，攻击者可以利用这个漏洞绕过“手机找回”功能，正常使用手机。

Severity

中

Patch Name

Huawei Smart Phones本地身份验证绕过漏洞的补丁

Patch Description

Huawei Nice是中国华为（Huawei）公司的一款智能手机。 Huawei Smart Phones存在本地身份验证绕过漏洞。攻击者可以通过特定的操作步骤，将手机刷机或恢复出厂设置。由于“手机找回”功能鉴权缺失，攻击者可以利用这个漏洞绕过“手机找回”功能，正常使用手机。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

厂商已发布了漏洞修复程序，请及时关注更新： http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20170125-01-smartphone-en

Reference

http://www.securityfocus.com/bid/95911

Impacted products

Name
Huawei Nice 0

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "95911"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-2708",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2708"
    }
  },
  "description": "Huawei Nice\u662f\u4e2d\u56fd\u534e\u4e3a\uff08Huawei\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u667a\u80fd\u624b\u673a\u3002\r\n\r\nHuawei Smart Phones\u5b58\u5728\u672c\u5730\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7\u7279\u5b9a\u7684\u64cd\u4f5c\u6b65\u9aa4\uff0c\u5c06\u624b\u673a\u5237\u673a\u6216\u6062\u590d\u51fa\u5382\u8bbe\u7f6e\u3002\u7531\u4e8e\u201c\u624b\u673a\u627e\u56de\u201d\u529f\u80fd\u9274\u6743\u7f3a\u5931\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8fd9\u4e2a\u6f0f\u6d1e\u7ed5\u8fc7\u201c\u624b\u673a\u627e\u56de\u201d\u529f\u80fd\uff0c\u6b63\u5e38\u4f7f\u7528\u624b\u673a\u3002",
  "discovererName": "Huawei",
  "formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttp://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20170125-01-smartphone-en",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-01537",
  "openTime": "2017-02-20",
  "patchDescription": "Huawei Nice\u662f\u4e2d\u56fd\u534e\u4e3a\uff08Huawei\uff09\u516c\u53f8\u7684\u4e00\u6b3e\u667a\u80fd\u624b\u673a\u3002\r\n\r\nHuawei Smart Phones\u5b58\u5728\u672c\u5730\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u4ee5\u901a\u8fc7\u7279\u5b9a\u7684\u64cd\u4f5c\u6b65\u9aa4\uff0c\u5c06\u624b\u673a\u5237\u673a\u6216\u6062\u590d\u51fa\u5382\u8bbe\u7f6e\u3002\u7531\u4e8e\u201c\u624b\u673a\u627e\u56de\u201d\u529f\u80fd\u9274\u6743\u7f3a\u5931\uff0c\u653b\u51fb\u8005\u53ef\u4ee5\u5229\u7528\u8fd9\u4e2a\u6f0f\u6d1e\u7ed5\u8fc7\u201c\u624b\u673a\u627e\u56de\u201d\u529f\u80fd\uff0c\u6b63\u5e38\u4f7f\u7528\u624b\u673a\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Huawei Smart Phones\u672c\u5730\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Huawei Nice 0"
  },
  "referenceLink": "http://www.securityfocus.com/bid/95911",
  "serverity": "\u4e2d",
  "submitTime": "2017-02-10",
  "title": "Huawei Smart Phones\u672c\u5730\u8eab\u4efd\u9a8c\u8bc1\u7ed5\u8fc7\u6f0f\u6d1e"
}

CVE-2017-2708 (GCVE-0-2017-2708)

Vulnerability from cvelistv5 – Published: 2017-11-22 19:00 – Updated: 2024-09-16 19:41

Summary

The 'Find Phone' function in Nice smartphones with software versions earlier before Nice-AL00C00B0135 has an authentication bypass vulnerability. An unauthenticated attacker may wipe and factory reset the phone by special steps. Due to missing authentication of the 'Find Phone' function, an attacker may exploit the vulnerability to bypass the 'Find Phone' function in order to use the phone normally.

Severity ?

No CVSS data available.

CWE

Authentication Bypass

Assigner

huawei

References

URL

Tags

	http://www.securityfocus.com/bid/95911	vdb-entryx_refsource_BID
	http://www.huawei.com/en/psirt/security-advisorie…	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	Huawei Technologies Co., Ltd.	Nice	Affected: Versions earlier before Nice-AL00C00B0135

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:02:07.655Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "95911",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/95911"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170125-01-smartphone-en"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Nice",
          "vendor": "Huawei Technologies Co., Ltd.",
          "versions": [
            {
              "status": "affected",
              "version": "Versions earlier before Nice-AL00C00B0135"
            }
          ]
        }
      ],
      "datePublic": "2017-11-15T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The \u0027Find Phone\u0027 function in Nice smartphones with software versions earlier before Nice-AL00C00B0135 has an authentication bypass vulnerability. An unauthenticated attacker may wipe and factory reset the phone by special steps. Due to missing authentication of the \u0027Find Phone\u0027 function, an attacker may exploit the vulnerability to bypass the \u0027Find Phone\u0027 function in order to use the phone normally."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Authentication Bypass",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-11-23T10:57:01",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "name": "95911",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/95911"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170125-01-smartphone-en"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "DATE_PUBLIC": "2017-11-15T00:00:00",
          "ID": "CVE-2017-2708",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Nice",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Versions earlier before Nice-AL00C00B0135"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei Technologies Co., Ltd."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The \u0027Find Phone\u0027 function in Nice smartphones with software versions earlier before Nice-AL00C00B0135 has an authentication bypass vulnerability. An unauthenticated attacker may wipe and factory reset the phone by special steps. Due to missing authentication of the \u0027Find Phone\u0027 function, an attacker may exploit the vulnerability to bypass the \u0027Find Phone\u0027 function in order to use the phone normally."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Authentication Bypass"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "95911",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/95911"
            },
            {
              "name": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170125-01-smartphone-en",
              "refsource": "CONFIRM",
              "url": "http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170125-01-smartphone-en"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2017-2708",
    "datePublished": "2017-11-22T19:00:00Z",
    "dateReserved": "2016-12-01T00:00:00",
    "dateUpdated": "2024-09-16T19:41:47.213Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2017-01537

CVE-2017-2708 (GCVE-0-2017-2708)

Tags

Sightings

Nomenclature