CVE-2017-2692
Summary
| CVE | CVE-2017-2692 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-11-22 19:29:00 UTC |
| Updated | 2017-12-07 18:56:00 UTC |
| Description | The Keyguard application in ALE-L02C635B140 and earlier versions,ALE-L02C636B140 and earlier versions,ALE-L21C10B150 and earlier versions,ALE-L21C185B200 and earlier versions,ALE-L21C432B214 and earlier versions,ALE-L21C464B150 and earlier versions,ALE-L21C636B200 and earlier versions,ALE-L23C605B190 and earlier versions,ALE-TL00C01B250 and earlier versions,ALE-UL00C00B250 and earlier versions,MT7-L09C605B325 and earlier versions,MT7-L09C900B339 and earlier versions,MT7-TL10C900B339 and earlier versions,CRR-CL00C92B172 and earlier versions,CRR-L09C432B180 and earlier versions,CRR-TL00C01B172 and earlier versions,CRR-UL00C00B172 and earlier versions,CRR-UL20C432B171 and earlier versions,GRA-CL00C92B230 and earlier versions,GRA-L09C432B222 and earlier versions,GRA-TL00C01B230SP01 and earlier versions,GRA-UL00C00B230 and earlier versions,GRA-UL00C10B201 and earlier versions,GRA-UL00C432B220 and earlier versions,H60-L04C10B523 and earlier versions,H60-L04C185B523 and earlier versions,H60-L04C636B527 and earlier versions,H60-L04C900B530 and earlier versions,PLK-AL10C00B220 and earlier versions,PLK-AL10C92B220 and earlier versions,PLK-CL00C92B220 and earlier versions,PLK-L01C10B140 and earlier versions,PLK-L01C185B130 and earlier versions,PLK-L01C432B187 and earlier versions,PLK-L01C432B190 and earlier versions,PLK-L01C432B190 and earlier versions,PLK-L01C636B130 and earlier versions,PLK-TL00C01B220 and earlier versions,PLK-TL01HC01B220 and earlier versions,PLK-UL00C17B220 and earlier versions,ATH-AL00C00B210 and earlier versions,ATH-AL00C92B200 and earlier versions,ATH-CL00C92B210 and earlier versions,ATH-TL00C01B210 and earlier versions,ATH-TL00HC01B210 and earlier versions,ATH-UL00C00B210 and earlier versions,RIO-AL00C00B220 and earlier versions,RIO-CL00C92B220 and earlier versions,RIO-TL00C01B220 and earlier versions,RIO-UL00C00B220 and earlier versions have a privilege elevation vulnerability. An attacker may exploit it to launch command injection in order to gain elevated privileges. |
Risk And Classification
Problem Types: CWE-77
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Huawei | G8 | - | All | All | All |
| Hardware | Huawei | G8 | - | All | All | All |
| Operating System | Huawei | G8 Firmware | All | All | All | All |
| Operating System | Huawei | G8 Firmware | All | All | All | All |
| Operating System | Huawei | G8 Firmware | All | All | All | All |
| Operating System | Huawei | G8 Firmware | All | All | All | All |
| Hardware | Huawei | Honor 6 | - | All | All | All |
| Hardware | Huawei | Honor 6 | - | All | All | All |
| Operating System | Huawei | Honor 6 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 6 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 6 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 6 Firmware | All | All | All | All |
| Hardware | Huawei | Honor 7 | - | All | All | All |
| Hardware | Huawei | Honor 7 | - | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Operating System | Huawei | Honor 7 Firmware | All | All | All | All |
| Hardware | Huawei | Mate 7 | - | All | All | All |
| Hardware | Huawei | Mate 7 | - | All | All | All |
| Operating System | Huawei | Mate 7 Firmware | All | All | All | All |
| Operating System | Huawei | Mate 7 Firmware | All | All | All | All |
| Operating System | Huawei | Mate 7 Firmware | All | All | All | All |
| Hardware | Huawei | Mate S | - | All | All | All |
| Hardware | Huawei | Mate S | - | All | All | All |
| Operating System | Huawei | Mate S Firmware | All | All | All | All |
| Operating System | Huawei | Mate S Firmware | All | All | All | All |
| Operating System | Huawei | Mate S Firmware | All | All | All | All |
| Operating System | Huawei | Mate S Firmware | All | All | All | All |
| Operating System | Huawei | Mate S Firmware | All | All | All | All |
| Hardware | Huawei | P8 | - | All | All | All |
| Hardware | Huawei | P8 | - | All | All | All |
| Operating System | Huawei | P8 Firmware | All | All | All | All |
| Operating System | Huawei | P8 Firmware | All | All | All | All |
| Operating System | Huawei | P8 Firmware | All | All | All | All |
| Operating System | Huawei | P8 Firmware | All | All | All | All |
| Operating System | Huawei | P8 Firmware | All | All | All | All |
| Operating System | Huawei | P8 Firmware | All | All | All | All |
| Hardware | Huawei | P8 Lite | - | All | All | All |
| Hardware | Huawei | P8 Lite | - | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Operating System | Huawei | P8 Lite Firmware | All | All | All | All |
| Hardware | Huawei | Shotx | - | All | All | All |
| Hardware | Huawei | Shotx | - | All | All | All |
| Operating System | Huawei | Shotx Firmware | All | All | All | All |
| Operating System | Huawei | Shotx Firmware | All | All | All | All |
| Operating System | Huawei | Shotx Firmware | All | All | All | All |
| Operating System | Huawei | Shotx Firmware | All | All | All | All |
| Operating System | Huawei | Shotx Firmware | All | All | All | All |
| Operating System | Huawei | Shotx Firmware | All | All | All | All |
| Operating System | Huawei | Shotx Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Security Advisory - Two Security Vulnerabilities in Huawei EMUI | CONFIRM | www.huawei.com | Issue Tracking, Vendor Advisory |
| Huawei EMUI Directory Traversal and Command Injection Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.