SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2016-5231

Huawei Mate8 NXT-AL before NXT-AL10C00B182, NXT-CL before NXT-CL00C92B182, NXT-DL before NXT-DL00C17B182, and NXT-TL before NXT-TL00C01B182 allows attackers to bypass permission checks and delete user data via a crafted app.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:		CVSS V2 Severity:
CVSS Score : 7.8		CVSS Score : 5.0
Exploit Score: 1.8		Exploit Score: 10.0
Impact Score: 5.9		Impact Score: 2.9

CVSS V3 Metrics:		CVSS V2 Metrics:
Attack Vector: LOCAL		Access Vector: NETWORK
Attack Complexity: LOW		Access Complexity: LOW
Privileges Required: NONE		Authentication: NONE
User Interaction: REQUIRED		Confidentiality: NONE
Scope: UNCHANGED		Integrity: PARTIAL
Confidentiality: HIGH		Availability: NONE
Integrity: HIGH
Availability: HIGH

Reference:

BID-91556

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160520-01-smartphone-en


30479



423868



249461



909



195508



282