{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-28T04:13:02.875","vulnerabilities":[{"cve":{"id":"CVE-2017-2715","sourceIdentifier":"psirt@huawei.com","published":"2017-11-22T19:29:01.117","lastModified":"2025-04-20T01:37:25.860","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to information leak."},{"lang":"es","value":"Files APP en su versión 7.1.1.309 y anteriores en algunos teléfonos móviles Huawei tiene una vulnerabilidad de descifrado de contraseñas por fuerza bruta debido al diseño inadecuado de la base de datos de Safe key. Un atacante no autorizado podría acceder a información sensible de la base de datos y podría descifrar las contraseñas Safe de los usuarios, lo que conduce a un filtrado de información."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:L/Au:N/C:P/I:N/A:N","baseScore":2.1,"accessVector":"LOCAL","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"LOW","exploitabilityScore":3.9,"impactScore":2.9,"acInsufInfo":true,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-200"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:huawei:files:*:*:*:*:*:*:*:*","versionEndIncluding":"7.1.1.309","matchCriteriaId":"BC4CA7CB-4ABD-4B9A-8F5E-7F8AAC485DD4"}]}]}],"references":[{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170425-01-files-en","source":"psirt@huawei.com","tags":["VDB Entry"]},{"url":"http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170425-01-files-en","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["VDB Entry"]}]}}]}