VYPR
Low severity3.9NVD Advisory· Published Mar 9, 2018· Updated Jun 17, 2026

CVE-2017-17149

CVE-2017-17149

Description

Huawei HiWallet App with the versions before 8.0.4 has an arbitrary lock pattern change vulnerability. It needs to verify the user's Huawei ID during lock pattern change. An attacker with root privilege who gets a user's smart phone may bypass Huawei ID verification by special operation. Successful exploit of this vulnerability can allow an attacker to change the lock pattern of HiWallet.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Huawei/Hiwalletllm-create
    Range: <8.0.4
  • Huawei Technologies Co., Ltd./Huawei HiWallet Appv5
    Range: The versions before 8.0.4

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.