Medium severity5.3NVD Advisory· Published Nov 22, 2017· Updated May 13, 2026

CVE-2017-8177

Description

Huawei APP HiWallet earlier than 5.0.3.100 versions do not support signature verification for APK file. An attacker could exploit this vulnerability to hijack the APK and upload modified APK file. Successful exploit could lead to the APP is hijacking.

Affected products

Huawei Technologies Co., Ltd./HiWalletv5
Range: Earlier than 5.0.3.100 versions
Huawei/Hiwallet
cpe:2.3:a:huawei:hiwallet:*:*:*:*:*:*:*:*
Range: <5.0.3.100

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20170816-01-app-ennvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.345
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000