The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to information leak.

Related CVEs

CVE-2017-2715

Key Information

GHSA ID

GHSA-wpqc-53jc-3gh7

Published

May 17, 2022 12:16 AM

Last Modified

May 17, 2022 12:16 AM

CVSS Score

7.5 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: September 2, 2025 6:32 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.