CVE-2016-8776

Name of the Vulnerable Software and Affected Versions Huawei P9 phones versions EVA-AL10C00, EVA-CL10C00, EVA-DL10C00, EVA-TL10C00 Huawei P9 Lite phones version VNS-L21C185

Description The issue allows attackers to bypass the factory reset protection (FRP) and enter some functional modules without authorization, enabling them to perform operations such as updating the Google account.

Recommendations For Huawei P9 phones versions EVA-AL10C00, EVA-CL10C00, EVA-DL10C00, EVA-TL10C00, update the software to a version that fixes the FRP bypass issue. For Huawei P9 Lite phones version VNS-L21C185, update the software to a version that fixes the FRP bypass issue. As a temporary workaround, consider restricting access to functional modules that can be entered without authorization until a patch is available.