CVE-2017-2704 (crowdtest, hiapp, hicinema, hihealthapp, hiwallet, huawei_pay, huaweiwear, hwclouddrive(emui6.0), hwparentcontrol, hwparentcontrolparent, hwphonefinder(emui5.1), hwphonefinder(emui6.0), skytone, smarthome)

Smarthome and earlier versions,HiAPP and earlier versions,HwParentControl 2.0.0 and earlier versions,HwParentControlParent and earlier versions,Crowdtest 1.5.3 and earlier versions,HiWallet and earlier versions,Huawei Pay and earlier versions,Skytone and earlier versions,HwCloudDrive(EMUI6.0) and earlier versions,HwPhoneFinder(EMUI6.0) and earlier versions,HwPhoneFinder(EMUI5.1) and earlier versions,HiCinema and earlier versions,HuaweiWear and earlier versions,HiHealthApp and earlier versions have an information exposure vulnerability. Encryption keys are stored in the system. The attacker can implement reverse engineering to obtain the encryption keys, causing information exposure.

View Full Alert

Leave a Reply