CVE-2017-17326
MEDIUMHuawei Mate 9 Pro Firmware LON-AL00BC00B139D; LON-AL00BC00B229 - Activation Lock Bypass
Title source: llmDescription
Huawei Mate 9 Pro Smartphones with software of LON-AL00BC00B139D; LON-AL00BC00B229 have an activation lock bypass vulnerability. The smartphone is supposed to be activated by the former account after reset if find my phone function is on. The software does not have a sufficient protection of activation lock. Successful exploit could allow an attacker to bypass the activation lock and activate the smartphone by a new account after a series of operation.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171227-01-smartphone-en
Scores
CVSS v3
4.6
EPSS
0.0003
EPSS Percentile
8.1%
Attack Vector
PHYSICAL
CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Details
Status
published
Products (2)
huawei/mate_9_pro_fimware
lon-al00bc00b139d
huawei/mate_9_pro_fimware
lon-al00bc00b229
Published
Mar 09, 2018
Tracked Since
Feb 18, 2026