CVE-2017-2727

Name of the Vulnerable Software and Affected Versions Huawei P9 versions earlier than EVA-AL00C00B365 Huawei P9 versions earlier than EVA-AL10C00B365 Huawei P9 versions earlier than EVA-CL00C92B365 Huawei P9 versions earlier than EVA-DL00C17B365 Huawei P9 versions earlier than EVA-TL00C01B365

Description The issue allows an unauthenticated attacker to bypass phone activation and access the user management page, enabling them to create a new user. A successful exploit could grant the attacker partial control over the phone's functions.

Recommendations For versions earlier than EVA-AL00C00B365, update to a version EVA-AL00C00B365 or later. For versions earlier than EVA-AL10C00B365, update to a version EVA-AL10C00B365 or later. For versions earlier than EVA-CL00C92B365, update to a version EVA-CL00C92B365 or later. For versions earlier than EVA-DL00C17B365, update to a version EVA-DL00C17B365 or later. For versions earlier than EVA-TL00C01B365, update to a version EVA-TL00C01B365 or later.