Medium severity6.8NVD Advisory· Published Nov 22, 2017· Updated May 13, 2026

CVE-2017-8151

Description

Huawei Honor 5S smart phones with software the versions before TAG-TL00C01B173 have an authentication bypass vulnerability due to the improper design of some components. An attacker can get a user's smart phone and install malicious apps in the mobile phone, allowing the attacker to reset the password and fingerprint of the phone without authentication.

Affected products

Huawei/Honor 5s Firmware
cpe:2.3:o:huawei:honor_5s_firmware:*:*:*:*:*:*:*:*
Range: <tag-tl00c01b173
Huawei Technologies Co., Ltd./Honor 5Sv5
Range: The versions before TAG-TL00C01B173

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20170816-03-smartphone-ennvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.442
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000