cvedb.io
CVE-2017-17161
MEDIUM · CVSS 6.8
EPSS exploitation probability: 0%
Published 2018-02-15T16:29:02.063 · Last modified 2026-06-17T01:10:28.493

Summary

The 'Find Phone' function in some Huawei smart phones with software earlier than Duke-L09C10B186 versions, earlier than Duke-L09C432B187 versions, earlier than Duke-L09C636B186 versions has an authentication bypass vulnerability. Due to improper authentication realization in the 'Find Phone' function. An attacker may exploit the vulnerability to bypass the 'Find Phone' function in order to use the phone normally.

Affected products

huawei — duke-l09_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when huawei ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.