Honor play smartphones with versions earlier than Cornell-AL00A 9.1.0.321(C00E320R1P1T8) have an insufficient authentication vulnerability. The system has a logic judge error under certain scenario. Successful exploit could allow the attacker to modify the alarm clock settings after a serious of uncommon operations without unlock the screen lock.
[
{
"product": "Honor play",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Versions earlier than Cornell-AL00A 9.1.0.321(C00E320R1P1T8)"
}
]
}
]