Aung Khant Zaw

**Name of the Vulnerable Software and Affected Versions** Huawei P9 phones versions EVA-AL10C00, EVA-CL10C00, EVA-DL10C00, EVA-TL10C00 Huawei P9 Lite phones version VNS-L21C185 **Description** The issue allows attackers to bypass the factory reset protection (FRP) and enter some functional modules without authorization, enabling them to perform operations such as updating the Google account. **Recommendations** For Huawei P9 phones versions EVA-AL10C00, EVA-CL10C00, EVA-DL10C00, EVA-TL10C00, update the software to a version that fixes the FRP bypass issue. For Huawei P9 Lite phones version VNS-L21C185, update the software to a version that fixes the FRP bypass issue. As a temporary workaround, consider restricting access to functional modules that can be entered without authorization until a patch is available.