Huawei P9/P9 Lite Factory Reset Protection improper authorization

A vulnerability has been found in Huawei P9 and P9 Lite and classified as critical. Affected by this vulnerability is an unknown functionality of the component Factory Reset Protection. The manipulation leads to improper authorization. The CWE definition for the vulnerability is CWE-285. The bug was discovered 12/07/2016. The weakness was released 04/02/2017 as sa-20161207-01 (Website). It is possible to read the advisory at huawei.com. This vulnerability is known as CVE-2016-8776. It is possible to launch the attack on the physical device. There are no technical details available. There is no exploit available. The pricing for an exploit might be around USD $0-$5k at the moment. The attack technique deployed by this issue is T1548.002 according to MITRE ATT&CK. It is declared as not defined. The vulnerability was handled as a non-public zero-day exploit for at least 116 days. We expect the 0-day to have been worth approximately $5k-$25k. It is recommended to upgrade the affected component. A possible mitigation has been published even before and not after the disclosure of the vulnerability. The vulnerability is also documented other vulnerability databases: SecurityFocus (BID 94836).

Field04/03/2017 09:05 AM08/25/2020 09:24 AM11/24/2022 02:43 PM
securityfocus948369483694836
securityfocus_titleHuawei P9 and P9 Lite CVE-2016-8776 Security Bypass VulnerabilityHuawei P9 and P9 Lite CVE-2016-8776 Security Bypass VulnerabilityHuawei P9 and P9 Lite CVE-2016-8776 Security Bypass Vulnerability
locationWebsiteWebsiteWebsite
cvss2_vuldb_eNDNDND
cvss2_vuldb_rlOFOFOF
cvss2_vuldb_rcNDNDND
cvss3_vuldb_eXXX
cvss3_vuldb_rlOOO
cvss3_vuldb_rcXXX
0day_days116116116
cvss3_nvd_basescore4.64.64.6
typeSmartphone Operating SystemSmartphone Operating SystemSmartphone Operating System
vendorHuaweiHuaweiHuawei
nameP9/P9 LiteP9/P9 LiteP9/P9 Lite
componentFactory Reset ProtectionFactory Reset ProtectionFactory Reset Protection
cwe285 (improper authorization)285 (improper authorization)285 (improper authorization)
risk222
cvss2_vuldb_basescore6.96.96.9
cvss2_vuldb_tempscore6.06.06.0
cvss2_vuldb_avLLL
cvss2_vuldb_acMMM
cvss2_vuldb_auNNN
cvss2_vuldb_ciCCC
cvss2_vuldb_iiCCC
cvss2_vuldb_aiCCC
cvss2_nvd_avLLL
cvss2_nvd_acLLL
cvss2_nvd_auNNN
cvss2_nvd_ciNNN
cvss2_nvd_iiPPP
cvss2_nvd_aiNNN
cvss3_meta_basescore5.75.75.7
cvss3_meta_tempscore5.55.55.6
cvss3_vuldb_basescore6.86.86.8
cvss3_vuldb_tempscore6.56.56.5
cvss3_vuldb_avPPP
cvss3_vuldb_acLLL
cvss3_vuldb_prNNN
cvss3_vuldb_uiNNN
cvss3_vuldb_sUUU
cvss3_vuldb_cHHH
cvss3_vuldb_iHHH
cvss3_vuldb_aHHH
cvss3_nvd_avPPP
cvss3_nvd_acLLL
cvss3_nvd_prNNN
cvss3_nvd_uiNNN
cvss3_nvd_sUUU
cvss3_nvd_cNNN
cvss3_nvd_iHHH
cvss3_nvd_aNNN
date1491091200 (04/02/2017)1491091200 (04/02/2017)1491091200 (04/02/2017)
urlhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161207-01-smartphone-enhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161207-01-smartphone-enhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161207-01-smartphone-en
price_0day$5k-$25k$5k-$25k$5k-$25k
nameUpgradeUpgradeUpgrade
cveCVE-2016-8776CVE-2016-8776CVE-2016-8776
cve_assigned1476748800 (10/18/2016)1476748800 (10/18/2016)1476748800 (10/18/2016)
cve_nvd_published149109120014910912001491091200
cve_nvd_summaryHuawei P9 phones with software EVA-AL10C00,EVA-CL10C00,EVA-DL10C00,EVA-TL10C00 and P9 Lite phones with software VNS-L21C185 allow attackers to bypass the factory reset protection (FRP) to enter some functional modules without authorization and perform operations to update the Google account.Huawei P9 phones with software EVA-AL10C00,EVA-CL10C00,EVA-DL10C00,EVA-TL10C00 and P9 Lite phones with software VNS-L21C185 allow attackers to bypass the factory reset protection (FRP) to enter some functional modules without authorization and perform operations to update the Google account.Huawei P9 phones with software EVA-AL10C00,EVA-CL10C00,EVA-DL10C00,EVA-TL10C00 and P9 Lite phones with software VNS-L21C185 allow attackers to bypass the factory reset protection (FRP) to enter some functional modules without authorization and perform operations to update the Google account.
osvdb_titleCVE-2016-8776 - Huawei - P9 Firmware - LowCVE-2016-8776 - Huawei - P9 Firmware - Low
securityfocus_date1481068800 (12/07/2016)1481068800 (12/07/2016)
securityfocus_classInput Validation ErrorInput Validation Error
discoverydate14810688001481068800
confirm_urlhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161207-01-smartphone-enhttp://www.huawei.com/en/psirt/security-advisories/huawei-sa-20161207-01-smartphone-en
identifiersa-20161207-01
cvss2_nvd_basescore2.1

Do you want to use VulDB in your project?

Use the official API to access entries easily!