CVE & CISA-KEV Catalog

CVE-2017-8214

MEDIUM
6.2
CVSS v3
NVD

Description

Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B191, versions earlier than Duke-TL30C01B191, versions earlier than Picasso-AL00C00B162, versions earlier than Picasso-TL00C01B162 , versions earlier than Barca-AL00C00B162, versions earlier than Barca-TL00C00B162, versions earlier than EVA-AL10C00B396SP03, versions earlier than EVA-CL00C92B396, versions earlier than EVA-DL00C17B396, versions earlier than EVA-TL00C01B396 , versions earlier than Vicky-AL00AC00B172, versions earlier than Toronto-AL00AC00B191, versions earlier than Toronto-TL10C01B191 have an unlock code verification bypassing vulnerability. An attacker with the root privilege of a mobile can exploit this vulnerability to bypass the unlock code verification and unlock the mobile phone bootloader.

How to fix

Remediation Available
honor 8 firmwareNVD
Affected:< frd-dl00c00b391Fixed in:frd-dl00c00b391CVE-2017-8214derived from NVD
honor 9 firmwareNVD
Affected:< stanford-tl00c01b175Fixed in:stanford-tl00c01b175CVE-2017-8214derived from NVD
honor v8 firmwareNVD
Affected:< knt-tl10c00b391Fixed in:knt-tl10c00b391CVE-2017-8214derived from NVD
honor v9 firmwareNVD
Affected:< duke-tl30c01b191Fixed in:duke-tl30c01b191CVE-2017-8214derived from NVD
nova 2 firmwareNVD
Affected:< picasso-tl00c01b162Fixed in:picasso-tl00c01b162CVE-2017-8214derived from NVD
nova 2 plus firmwareNVD
Affected:< barca-tl00c00b162Fixed in:barca-tl00c00b162CVE-2017-8214derived from NVD
p10 plus firmwareNVD
Affected:< vicky-al00ac00b172Fixed in:vicky-al00ac00b172CVE-2017-8214derived from NVD
p9 firmwareNVD
Affected:< eva-tl00c01b396Fixed in:eva-tl00c01b396CVE-2017-8214derived from NVD
toronto firmwareNVD
Affected:< toronto-tl10c01b191Fixed in:toronto-tl10c01b191CVE-2017-8214derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorPhysical
Attack ComplexityLow
Privileges RequiredHigh
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityHigh

CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploit Intelligence

0.27%probability of exploitation in 30 days
18thpercentile

Low risk: more likely to be exploited than 18% of all known CVEs.

References

Vendor Advisory1

Related Vulnerabilities

Other CWE-287 (Improper Authentication) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2023-35082Critical9.8100%KEV + RansomFix
CVE-2023-35078Critical9.8100%KEV + RansomFix
CVE-2017-7921Critical9.8100%KEV-
CVE-2024-7593Critical9.8100%KEV-
CVE-2023-46805High8.2100%KEV + Ransom-
CVE-2022-40684Critical9.8100%KEV + RansomFix
Embed a live status badge for CVE-2017-8214
CVE-2017-8214 severity badge

Markdown

[![CVE-2017-8214](https://tridentstack.com/cve/badge/CVE-2017-8214.svg)](https://tridentstack.com/cve/CVE-2017-8214)

HTML

<a href="https://tridentstack.com/cve/CVE-2017-8214"><img src="https://tridentstack.com/cve/badge/CVE-2017-8214.svg" alt="CVE-2017-8214"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-05-13.