CVE & CISA-KEV Catalog

CVE-2017-8215

MEDIUM
6.2
CVSS v3
NVD

Description

Honor 8,Honor V8,Honor 9,Honor V9,Nova 2,Nova 2 Plus,P9,P10 Plus,Toronto Huawei smart phones with software of versions earlier than FRD-AL00C00B391, versions earlier than FRD-DL00C00B391, versions earlier than KNT-AL10C00B391, versions earlier than KNT-AL20C00B391, versions earlier than KNT-UL10C00B391, versions earlier than KNT-TL10C00B391, versions earlier than Stanford-AL00C00B175, versions earlier than Stanford-AL10C00B175, versions earlier than Stanford-TL00C01B175, versions earlier than Duke-AL20C00B191, versions earlier than Duke-TL30C01B191, versions earlier than Picasso-AL00C00B162, versions earlier than Picasso-TL00C01B162 , versions earlier than Barca-AL00C00B162, versions earlier than Barca-TL00C00B162, versions earlier than EVA-AL10C00B396SP03, versions earlier than EVA-CL00C92B396, versions earlier than EVA-DL00C17B396, versions earlier than EVA-TL00C01B396 , versions earlier than Vicky-AL00AC00B172, versions earlier than Toronto-AL00AC00B191, versions earlier than Toronto-TL10C01B191 have a permission control vulnerability. An attacker with the system privilege of a mobile can exploit this vulnerability to bypass the unlock code verification and unlock the mobile phone bootloader.

How to fix

Remediation Available
honor 8 firmwareNVD
Affected:< frd-dl00c00b391Fixed in:frd-dl00c00b391CVE-2017-8215derived from NVD
honor 9 firmwareNVD
Affected:< stanford-tl00c01b175Fixed in:stanford-tl00c01b175CVE-2017-8215derived from NVD
honor v8 firmwareNVD
Affected:< knt-tl10c00b391Fixed in:knt-tl10c00b391CVE-2017-8215derived from NVD
honor v9 firmwareNVD
Affected:< duke-tl30c01b191Fixed in:duke-tl30c01b191CVE-2017-8215derived from NVD
nova 2 firmwareNVD
Affected:< picasso-tl00c01b162Fixed in:picasso-tl00c01b162CVE-2017-8215derived from NVD
nova 2 plus firmwareNVD
Affected:< barca-tl00c00b162Fixed in:barca-tl00c00b162CVE-2017-8215derived from NVD
p10 plus firmwareNVD
Affected:< vicky-al00ac00b172Fixed in:vicky-al00ac00b172CVE-2017-8215derived from NVD
p9 firmwareNVD
Affected:< eva-tl00c01b396Fixed in:eva-tl00c01b396CVE-2017-8215derived from NVD
toronto firmwareNVD
Affected:< toronto-tl10c01b191Fixed in:toronto-tl10c01b191CVE-2017-8215derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorPhysical
Attack ComplexityLow
Privileges RequiredHigh
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityHigh
IntegrityHigh
AvailabilityHigh

CVSS:3.0/AV:P/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Exploit Intelligence

0.28%probability of exploitation in 30 days
20thpercentile

Low risk: more likely to be exploited than 20% of all known CVEs.

References

Vendor Advisory1
Embed a live status badge for CVE-2017-8215
CVE-2017-8215 severity badge

Markdown

[![CVE-2017-8215](https://tridentstack.com/cve/badge/CVE-2017-8215.svg)](https://tridentstack.com/cve/CVE-2017-8215)

HTML

<a href="https://tridentstack.com/cve/CVE-2017-8215"><img src="https://tridentstack.com/cve/badge/CVE-2017-8215.svg" alt="CVE-2017-8215"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-05-13.