PT-2016-5652 · Huawei · Huawei Wear App

Akshay Jain

Published

2016-06-13

Updated

2016-11-28

CVE-2016-3677

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Huawei Wear App version prior to 15.0.0.307

Description The issue concerns the Huawei Wear App's failure to validate SSL certificates, allowing local users to have an unspecified impact.

Recommendations For versions prior to 15.0.0.307, update to version 15.0.0.307 or later to resolve the issue.

Fix

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

CVE-2016-3677

Huawei Wear App