Plaintext Storage Vulnerability in Huawei Files APP: Exposing Safe Passwords

Plaintext Storage Vulnerability in Huawei Files APP: Exposing Safe Passwords

CVE-2017-2723 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:N/A:N

The Files APP 7.1.1.308 and earlier versions in some Huawei mobile phones has a vulnerability of plaintext storage of users' Safe passwords. An attacker with the root privilege of an Android system could forge the Safe to read users' plaintext Safe passwords, leading to information leak.

Learn more about our Cis Benchmark Audit For Google Android.