CVE-2016-4086

EUVD-2016-5087
Huawei HiSuite (In China) before 4.0.4.301 and (Out of China) before 4.0.4.204_ove allows remote attackers to install arbitrary apps on a connected phone via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.3 MEDIUM
ADJACENT_NETWORK
HIGH
NONE
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 17%
Affected Products (NVD)
VendorProductVersion
huaweihisuite
2.3.15
huaweihisuite
2.3.28
huaweihisuite
2.3.35
huaweihisuite
2.3.42
huaweihisuite
2.3.50
huaweihisuite
2.3.55
huaweihisuite
2.3.55.1
𝑥
= Vulnerable software versions
References
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160422-01-hisuite-en
http://www.securityfocus.com/bid/92622
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160422-01-hisuite-en
http://www.securityfocus.com/bid/92622