1. Home
  2. CVE Database
  3. CVE-2017-2730
LOW · 3.5

CVE-2017-2730

HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and HUAWEI Tech Support APP (for IOS) versions earlier before 5.0.0 have an information leak vulnerability. When an iPhone with these APP...

Vulnerability Description

HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and HUAWEI Tech Support APP (for IOS) versions earlier before 5.0.0 have an information leak vulnerability. When an iPhone with these APPs installed access the Wi-Fi hotpot built by attacker, the attacker can collect the information of iPhone mode and firmware version.

CVSS Score

3.5

LOW

CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
LOW
Integrity
NONE
Availability
NONE

Affected Products

VendorProductVersions
HuaweiHilink< 5.0.25.306
HuaweiTech Support< 5.0.0
AppleIphone Os-

Related Weaknesses (CWE)

CWE-200

References

FAQ

What is CVE-2017-2730?

CVE-2017-2730 is a vulnerability with a CVSS score of 3.5 (LOW). HUAWEI HiLink APP (for IOS) versions earlier before 5.0.25.306 and HUAWEI Tech Support APP (for IOS) versions earlier before 5.0.0 have an information leak vulnerability. When an iPhone with these APP...

How severe is CVE-2017-2730?

CVE-2017-2730 has been rated LOW with a CVSS base score of 3.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-2730?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Hilink, Huawei Tech Support, Apple Iphone Os.