Sign-up

ID

VAR-201804-1332


CVE

CVE-2018-7932


TITLE

Huawei AppGallery Access control vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-004568

DESCRIPTION

Huawei AppGallery versions before 8.0.4.301 has an arbitrary Javascript running vulnerability. An attacker may set up a malicious network environment and trick user into accessing a malicious web page to bypass the whitelist mechanism, which make the malicious Javascript loaded and run in the smart phone. Huawei AppGallery Contains an access control vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. This vulnerability allows remote attackers to escalate privileges on vulnerable installations of Huawei App Market. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability.The specific flaw exists within the handling of the launchApp method within the HiSpaceObject JavaScript interface. The issue lies in the lack of verification of the user-supplied arguments. An attacker can leverage this vulnerability to escalate privileges to resources normally protected from the application. Huawei AppGallery is a software integrated in Huawei mobile phones for downloading third-party applications from Huawei of China. There are security vulnerabilities in Huawei AppGallery versions earlier than 8.0.4.301

Trust: 2.34

sources: NVD: CVE-2018-7932 // JVNDB: JVNDB-2018-004568 // ZDI: ZDI-18-875 // VULHUB: VHN-137964

AFFECTED PRODUCTS

vendor:huaweimodel:appgalleryscope:ltversion:8.0.4.301

Trust: 1.8

vendor:huaweimodel:app marketscope: - version: -

Trust: 0.7

sources: ZDI: ZDI-18-875 // JVNDB: JVNDB-2018-004568 // NVD: CVE-2018-7932

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-7932
value: HIGH

Trust: 1.0

NVD: CVE-2018-7932
value: HIGH

Trust: 0.8

ZDI: CVE-2018-7932
value: MEDIUM

Trust: 0.7

CNNVD: CNNVD-201804-1388
value: HIGH

Trust: 0.6

VULHUB: VHN-137964
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-7932
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

ZDI: CVE-2018-7932
severity: MEDIUM
baseScore: 4.4
vectorString: AV:L/AC:M/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.4
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.7

VULHUB: VHN-137964
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-7932
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: REQUIRED
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: ZDI: ZDI-18-875 // VULHUB: VHN-137964 // JVNDB: JVNDB-2018-004568 // CNNVD: CNNVD-201804-1388 // NVD: CVE-2018-7932

PROBLEMTYPE DATA

problemtype:CWE-345

Trust: 1.1

problemtype:CWE-284

Trust: 0.9

sources: VULHUB: VHN-137964 // JVNDB: JVNDB-2018-004568 // NVD: CVE-2018-7932

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201804-1388

TYPE

data forgery

Trust: 0.6

sources: CNNVD: CNNVD-201804-1388

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-004568

PATCH
title:huawei-sa-20180423-01-appurl:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180423-01-app-en
Trust: 1.5
title:Huawei AppGallery Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=79670
Trust: 0.6
sources:
            
            
            ZDI: ZDI-18-875 // 
            
            
            
            JVNDB: JVNDB-2018-004568 // 
            
            
            
            CNNVD: CNNVD-201804-1388

EXTERNAL IDS
db:NVDid:CVE-2018-7932
Trust: 3.2
db:JVNDBid:JVNDB-2018-004568
Trust: 0.8
db:ZDI_CANid:ZDI-CAN-5348
Trust: 0.7
db:ZDIid:ZDI-18-875
Trust: 0.7
db:CNNVDid:CNNVD-201804-1388
Trust: 0.7
db:VULHUBid:VHN-137964
Trust: 0.1
sources:
            
            
            ZDI: ZDI-18-875 // 
            
            
            
            VULHUB: VHN-137964 // 
            
            
            
            JVNDB: JVNDB-2018-004568 // 
            
            
            
            CNNVD: CNNVD-201804-1388 // 
            
            
            
            NVD: CVE-2018-7932

REFERENCES
url:http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180423-01-app-en
Trust: 2.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-7932
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-7932
Trust: 0.8
sources:
            
            
            ZDI: ZDI-18-875 // 
            
            
            
            VULHUB: VHN-137964 // 
            
            
            
            JVNDB: JVNDB-2018-004568 // 
            
            
            
            CNNVD: CNNVD-201804-1388 // 
            
            
            
            NVD: CVE-2018-7932

CREDITS
MWR Labs - Alex Plaskett James Loureiro Robert Miller and Georgi Geshev
Trust: 0.7
sources:
            
            
            ZDI: ZDI-18-875

SOURCES
db:ZDIid:ZDI-18-875
db:VULHUBid:VHN-137964
db:JVNDBid:JVNDB-2018-004568
db:CNNVDid:CNNVD-201804-1388
db:NVDid:CVE-2018-7932

LAST UPDATE DATE
2024-11-23T22:55:54.202000+00:00

SOURCES UPDATE DATE
db:ZDIid:ZDI-18-875date:2018-08-02T00:00:00
db:VULHUBid:VHN-137964date:2019-10-03T00:00:00
db:JVNDBid:JVNDB-2018-004568date:2018-06-25T00:00:00
db:CNNVDid:CNNVD-201804-1388date:2019-10-23T00:00:00
db:NVDid:CVE-2018-7932date:2024-11-21T04:12:58.790

SOURCES RELEASE DATE
db:ZDIid:ZDI-18-875date:2018-08-02T00:00:00
db:VULHUBid:VHN-137964date:2018-04-24T00:00:00
db:JVNDBid:JVNDB-2018-004568date:2018-06-25T00:00:00
db:CNNVDid:CNNVD-201804-1388date:2018-04-25T00:00:00
db:NVDid:CVE-2018-7932date:2018-04-24T15:29:00.993