What is CVE-2017-8166?

CVE-2017-8166 is a medium-severity vulnerability in Huawei Honor_v9. CVSS score: 6.8/10. Published 2017-11-22.

How severe is CVE-2017-8166?

Medium severity. CVSS v3 base score is 6.8 out of 10.

Vulnerability in Huawei Honor_v9

CVE-2017-8166

Huawei mobile phones Honor V9 with the software versions before Duke-AL20C00B195 have an App Lock bypass vulnerability. An attacker could perform specific operations to bypass the App Lock to use apps on a target mobile phone.

EPSS: 0.000 (6.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.8 (Medium). Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H.

Affected products

Huawei Honor_v9
Huawei Honor_v9_firmware
Huawei Technologies Co., Ltd. Honor V9 — versions The versions before Duke-AL20C00B195

References

psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2017-8166?: CVE-2017-8166 is a medium-severity vulnerability in Huawei Honor_v9. CVSS score: 6.8/10. Published 2017-11-22.
How severe is CVE-2017-8166?: Medium severity. CVSS v3 base score is 6.8 out of 10.