CVE-2017-8154
Description
The Themes App Honor 8 Lite Huawei mobile phones with software of versions before Prague-L31C576B172, versions before Prague-L31C530B160, versions before Prague-L31C432B180 has a man-in-the-middle (MITM) vulnerability due to the use of the insecure HTTP protocol for theme download. An attacker may exploit this vulnerability to tamper with downloaded themes.
Risk Information
Base Score
5.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.056
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-8154 are affected in honor_8_lite_firmware prague-l31c432b180 | NCM |
| Vulnerabilities CVE-2017-8154 are affected in honor_8_lite_firmware prague-l23c605b160 | NCM |
| Vulnerabilities CVE-2017-8154 are affected in honor_8_lite_firmware prague-l03c605b161 | NCM |
| Cleartext Transmission of Sensitive Information Vulnerability (CVE-2017-8154) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234