cvedb.io
CVE-2018-7926
MEDIUM · CVSS 4.6
EPSS exploitation probability: 0%
Published 2018-11-13T19:29:00.477 · Last modified 2026-06-17T02:03:57.510

Summary

Huawei Watch 2 with versions and earlier than OWDD.180707.001.E1 have an improper authorization vulnerability. Due to improper permission configuration for specific operations, an attacker who obtained the Huawei ID bound to the watch can bypass permission verification to perform specific operations and modify some data on the watch.

Affected products

huawei — watch_2_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when huawei ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.