What is CVE-2017-8171?

CVE-2017-8171 is a medium-severity vulnerability in Huawei P10_plus, classified under Exposure of Resource to Wrong Sphere. CVSS score: 4.6/10. Published 2017-11-22.

How severe is CVE-2017-8171?

Medium severity. CVSS v3 base score is 4.6 out of 10.

Vulnerability in Huawei P10_plus

CVE-2017-8171

Huawei smart phones with software earlier than Vicky-AL00AC00B172D versions have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an att…

EPSS: 0.000 (8.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.6 (Medium). Vector: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N.

Affected products

Huawei P10_plus
Huawei P10_plus_firmware
Huawei Technologies Co., Ltd. Vicky-al00a — versions Earlier than Vicky-AL00AC00B172D versions

Weakness classification (CWE)

CWE-668 — Exposure of Resource to Wrong Sphere

References

psirt@huawei.com (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2017-8171?: CVE-2017-8171 is a medium-severity vulnerability in Huawei P10_plus, classified under Exposure of Resource to Wrong Sphere. CVSS score: 4.6/10. Published 2017-11-22.
How severe is CVE-2017-8171?: Medium severity. CVSS v3 base score is 4.6 out of 10.