First published: Thu Jun 30 2016(Updated: )
Huawei HiSuite (In China) before 4.0.4.301 and (Out of China) before 4.0.4.204_ove allows remote attackers to install arbitrary apps on a connected phone via unspecified vectors.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Hisuite | =2.3.15 | |
Huawei Hisuite | =2.3.28 | |
Huawei Hisuite | =2.3.35 | |
Huawei Hisuite | =2.3.42 | |
Huawei Hisuite | =2.3.50 | |
Huawei Hisuite | =2.3.55 | |
Huawei Hisuite | =2.3.55.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2016-4086 is considered a high severity vulnerability due to its potential for remote attackers to install arbitrary applications.
To fix CVE-2016-4086, upgrade Huawei HiSuite to version 4.0.4.301 or later for users in China, and to 4.0.4.204_ove or later for users outside China.
Huawei HiSuite versions prior to 4.0.4.301 in China and prior to 4.0.4.204_ove outside China are affected by CVE-2016-4086.
CVE-2016-4086 enables remote attacks that can install arbitrary applications on a connected phone.
No specific workarounds are documented for CVE-2016-4086, so upgrading to the patched versions is recommended.