CVE-2016-5231 Information

Description

Huawei Mate8 NXT-AL before NXT-AL10C00B182 NXT-CL before NXT-CL00C92B182 NXT-DL before NXT-DL00C17B182 and NXT-TL before NXT-TL00C01B182 allows attackers to bypass permission checks and delete user data via a crafted app.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Reference

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160520-01-smartphone-en http://www.securityfocus.com/bid/91556

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

7.8