VYPR
← All advisories
Unrated severityNVD Advisory· Published Oct 23, 2018· Updated Aug 5, 2024

CVE-2018-7911

CVE-2018-7911

Description

Some Huawei smart phones ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B 8.0.0.113(SP7C01), 8.0.0.118(C01), 8.0.0.120(SP2C01), 8.0.0.125(SP1C01), 8.0.0.125(SP2C01), 8.0.0.125(SP3C01), 8.0.0.126(SP2C01), 8.0.0.126(SP5C01), 8.0.0.127(SP1C01), 8.0.0.128(SP2C01), 8.0.0.129(SP2C01), Charlotte-AL00A 8.1.0.105(SP7C00), 8.1.0.106(SP3C00), 8.1.0.107(SP5C00), 8.1.0.107(SP7C00), 8.1.0.108(SP3C00), 8.1.0.108(SP6C00), 8.1.0.109(SP2C00), Emily-AL00A 8.1.0.105(SP6C00), 8.1.0.106(SP2C00), 8.1.0.107(SP5C00), 8.1.0.107(SP7C00), 8.1.0.108(SP2C00), 8.1.0.108(SP6C00), 8.1.0.109(SP5C00) have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker can login the configuration flow by Gaode Map and can perform some operations to update the Google account. As a result, the FRP function is bypassed.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

A Factory Reset Protection (FRP) bypass in Huawei smart phones allows an attacker to bypass the FRP function via Gaode Map during reconfiguration.

Vulnerability

The Factory Reset Protection (FRP) bypass vulnerability (CVE-2018-7911) exists in multiple Huawei smart phone models, including ALP-AL00B, BLA-TL00B, Charlotte-AL00A, and Emily-AL00A, running specific versions of Android 8.0 or 8.1. During the reconfiguration process using the FRP function, an attacker can leverage the Gaode Map application to log in to the configuration flow and update the Google account, effectively bypassing the FRP mechanism [1].

Exploitation

An attacker must have physical access to the target device that has been factory reset and is in the FRP lock state. The attacker starts the initial setup flow, opens the Gaode Map app (which is present on the device), and uses it to trigger a sequence of operations that update the Google account linked to the device. No authentication or additional user interaction beyond physical access is required [1].

Impact

Successful exploitation allows the attacker to bypass the FRP protection, thereby gaining full access to the device and its data. This compromises the confidentiality and integrity of user information stored on the device, as the attacker can set up the device as a new user, access personal data, and use the device freely [1].

Mitigation

Huawei released software updates to fix this vulnerability. Users should upgrade their affected devices to the resolved versions specified in the security advisory (e.g., ALP-AL00B to ALP-AL00 8.0.0.152). For other affected models, refer to the advisory for the exact resolved version. If an update is not available, no workaround is provided [1].

References
  1. Security Advisory - FRP Bypass Vulnerability in Huawei Smart Phones

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

2
  • Huawei/ALP-AL00Bllm-fuzzy
    Range: 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00)
  • Huawei Technologies Co., Ltd./ALP-AL00B, ALP-AL00B-RSC, BLA-TL00B, Charlotte-AL00A, Emily-AL00A,v5
    Range: ALP-AL00B 8.0.0.106(C00), 8.0.0.113(SP2C00), 8.0.0.113(SP3C00), 8.0.0.113(SP7C00), 8.0.0.118(C00), 8.0.0.120(SP2C00), 8.0.0.125(SP1C00), 8.0.0.125(SP3C00), 8.0.0.126(SP2C00), 8.0.0.126(SP5C00), 8.0.0.127(SP1C00), 8.0.0.128(SP2C00), ALP-AL00B-RSC 1.0.0.2, BLA-TL00B 8.0.0.113(SP7C01), 8.0.0.118(C01), 8.0.0.120(SP2C01), 8.0.0.125(SP1C01), 8.0.0.125(SP2C01), 8.0.0.125(SP3C01), 8.0.0.126(SP2C01), 8.0.0.126(SP5C01), 8.0.0.127(SP1C01), 8.0.0.128(SP2C01), 8.0.0.129(SP2C01), Charlotte-AL00A 8.1.0.105(SP7C00), 8.1.0.106(SP3C00), 8.1.0.107(SP5C00), 8.1.0.107(SP7C00), 8.1.0.108(SP3C00), 8.1.0.108(SP6C00), 8.1.0.109(SP2C00), Emily-AL00A 8.1.0.105(SP6C00), 8.1.0.106(SP2C00), 8.1.0.107(SP5C00), 8.1.0.107(SP7C00), 8.1.0.108(SP2C00), 8.1.0.108(SP6C00), 8.1.0.109(SP5C00)

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.