CVE-2017-17149

CVE-2017-17149

Huawei HiWallet App with the versions before 8.0.4 has an arbitrary lock pattern change vulnerability. It needs to verify the user’s Huawei ID during lock pattern change. An attacker with root privilege who gets a user’s smart phone may bypass Huawei ID verification by special operation. Successful exploit of this vulnerability can allow an attacker to change the lock pattern of HiWallet.

Source: CVE-2017-17149

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다