cvelistv5 - cve-2021-22391

CVE-2021-22391 (GCVE-0-2021-22391)

Vulnerability from cvelistv5

Published

2021-08-02 16:45

Modified

2024-08-03 18:44

Severity ?

CWE

Incorrect Calculation of Buffer Size

Summary

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

References

▼	URL	Tags
	psirt@huawei.com	https://consumer.huawei.com/en/support/bulletin/2021/6/	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://consumer.huawei.com/en/support/bulletin/2021/6/	Vendor Advisory

Impacted products

Vendor

Product

Version

▼

Huawei

EMUI

Version: 11.0.0
Version: 10.1.1
Version: 10.1.0
Version: 10.0.0
Version: 9.1.1
Version: 9.1.0

Huawei

Magic UI

Version: 4.0.0
Version: 3.1.1
Version: 3.1.0
Version: 3.0.0
Version: 2.1.1

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T18:44:13.448Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "EMUI",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "11.0.0"
            },
            {
              "status": "affected",
              "version": "10.1.1"
            },
            {
              "status": "affected",
              "version": "10.1.0"
            },
            {
              "status": "affected",
              "version": "10.0.0"
            },
            {
              "status": "affected",
              "version": "9.1.1"
            },
            {
              "status": "affected",
              "version": "9.1.0"
            }
          ]
        },
        {
          "product": "Magic UI",
          "vendor": "Huawei",
          "versions": [
            {
              "status": "affected",
              "version": "4.0.0"
            },
            {
              "status": "affected",
              "version": "3.1.1"
            },
            {
              "status": "affected",
              "version": "3.1.0"
            },
            {
              "status": "affected",
              "version": "3.0.0"
            },
            {
              "status": "affected",
              "version": "2.1.1"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Incorrect Calculation of Buffer Size",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-08-02T16:45:01",
        "orgId": "25ac1063-e409-4190-8079-24548c77ea2e",
        "shortName": "huawei"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2021-22391",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "EMUI",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "11.0.0"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "10.1.1"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "10.1.0"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "10.0.0"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "9.1.1"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "9.1.0"
                          }
                        ]
                      }
                    },
                    {
                      "product_name": "Magic UI",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "=",
                            "version_value": "4.0.0"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "3.1.1"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "3.1.0"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "3.0.0"
                          },
                          {
                            "version_affected": "=",
                            "version_value": "2.1.1"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Huawei"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Incorrect Calculation of Buffer Size"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://consumer.huawei.com/en/support/bulletin/2021/6/",
              "refsource": "MISC",
              "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "25ac1063-e409-4190-8079-24548c77ea2e",
    "assignerShortName": "huawei",
    "cveId": "CVE-2021-22391",
    "datePublished": "2021-08-02T16:45:01",
    "dateReserved": "2021-01-05T00:00:00",
    "dateUpdated": "2024-08-03T18:44:13.448Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-22391\",\"sourceIdentifier\":\"psirt@huawei.com\",\"published\":\"2021-08-02T17:15:13.983\",\"lastModified\":\"2024-11-21T05:50:02.033\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.\"},{\"lang\":\"es\",\"value\":\"Se presenta un C\u00e1lculo Incorrecto del Tama\u00f1o del B\u00fafer en el Smartphone de Huawei. Una explotaci\u00f3n con \u00e9xito de esta vulnerabilidad puede causar al sistema reiniciarse\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-131\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:emui:9.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"940801A5-523C-40D6-BB43-25BC78ADDE61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:emui:9.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E6D0F53-9E85-4877-B558-4F5FB1F865D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:emui:10.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"504F2E73-FFD0-4589-8644-FE77656BB28D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:emui:10.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"66AC7F91-917C-40A6-9983-A339EFB091F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:emui:10.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A7FF0AD1-22C2-423B-822A-E6496CEDAB02\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:emui:11.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B701EC6-8208-4D22-95A6-B07D471A8A8B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:magic_ui:2.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49E5FFC0-53B4-4A34-8A23-BC70AA565703\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:magic_ui:3.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8A7A4346-1757-48F9-827C-13EABC357302\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:magic_ui:3.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFAE846A-00EA-417F-B66F-1F5396BB6139\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:magic_ui:3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B655712B-E86C-4BD2-8A99-AEA382C520E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:huawei:magic_ui:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6066FAB-23F5-4CB2-B89E-B00F8835AC39\"}]}]}],\"references\":[{\"url\":\"https://consumer.huawei.com/en/support/bulletin/2021/6/\",\"source\":\"psirt@huawei.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://consumer.huawei.com/en/support/bulletin/2021/6/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

gsd-2021-22391

Vulnerability from gsd

Modified

2023-12-13 01:23

Details

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

Aliases

CVE-2021-22391

Aliases

CVE-2021-22391

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-22391",
    "description": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.",
    "id": "GSD-2021-22391"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-22391"
      ],
      "details": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.",
      "id": "GSD-2021-22391",
      "modified": "2023-12-13T01:23:24.787407Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@huawei.com",
        "ID": "CVE-2021-22391",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "EMUI",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "11.0.0"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "10.1.1"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "10.1.0"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "10.0.0"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "9.1.1"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "9.1.0"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Magic UI",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "4.0.0"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "3.1.1"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "3.1.0"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "3.0.0"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "2.1.1"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Huawei"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Incorrect Calculation of Buffer Size"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://consumer.huawei.com/en/support/bulletin/2021/6/",
            "refsource": "MISC",
            "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:huawei:magic_ui:2.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:magic_ui:3.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:magic_ui:3.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:magic_ui:3.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:magic_ui:4.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:emui:9.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:emui:9.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:emui:10.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:emui:10.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:emui:10.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:huawei:emui:11.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@huawei.com",
          "ID": "CVE-2021-22391"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-131"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://consumer.huawei.com/en/support/bulletin/2021/6/",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2021-12-09T17:55Z",
      "publishedDate": "2021-08-02T17:15Z"
    }
  }
}

var-202108-2217

Vulnerability from variot

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202108-2217",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "magic ui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "3.1.0"
      },
      {
        "model": "emui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "9.1.0"
      },
      {
        "model": "magic ui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "2.1.1"
      },
      {
        "model": "emui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "9.1.1"
      },
      {
        "model": "magic ui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "3.0.0"
      },
      {
        "model": "emui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "10.1.0"
      },
      {
        "model": "emui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "11.0.0"
      },
      {
        "model": "emui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "10.0.0"
      },
      {
        "model": "magic ui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "4.0.0"
      },
      {
        "model": "magic ui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "3.1.1"
      },
      {
        "model": "emui",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "huawei",
        "version": "10.1.1"
      },
      {
        "model": "emui",
        "scope": null,
        "trust": 0.8,
        "vendor": "huawei",
        "version": null
      },
      {
        "model": "magic ui",
        "scope": null,
        "trust": 0.8,
        "vendor": "huawei",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "cve": "CVE-2021-22391",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2021-22391",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 1.9,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-380826",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "nvd@nist.gov",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 3.9,
            "id": "CVE-2021-22391",
            "impactScore": 3.6,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 7.5,
            "baseSeverity": "High",
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2021-22391",
            "impactScore": null,
            "integrityImpact": "None",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2021-22391",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2021-22391",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202108-111",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-380826",
            "trust": 0.1,
            "value": "MEDIUM"
          },
          {
            "author": "VULMON",
            "id": "CVE-2021-22391",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-22391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2021-22391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-22391"
      }
    ],
    "trust": 1.8
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2021-22391",
        "trust": 3.4
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-380826",
        "trust": 0.1
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-22391",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-22391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "id": "VAR-202108-2217",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-380826"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-08-14T14:55:49.177000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "CVE-2021-22391",
        "trust": 0.8,
        "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
      },
      {
        "title": "Huawei Smartphone Security vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=159053"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-131",
        "trust": 1.1
      },
      {
        "problemtype": "Buffer size calculation error (CWE-131) [NVD evaluation ]",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.8,
        "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
      },
      {
        "trust": 1.4,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2021-22391"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/131.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-22391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "db": "VULMON",
        "id": "CVE-2021-22391"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      },
      {
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2021-08-02T00:00:00",
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "date": "2021-08-02T00:00:00",
        "db": "VULMON",
        "id": "CVE-2021-22391"
      },
      {
        "date": "2022-07-11T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "date": "2021-08-02T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      },
      {
        "date": "2021-08-02T17:15:13.983000",
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2021-12-09T00:00:00",
        "db": "VULHUB",
        "id": "VHN-380826"
      },
      {
        "date": "2021-08-06T00:00:00",
        "db": "VULMON",
        "id": "CVE-2021-22391"
      },
      {
        "date": "2022-07-11T05:34:00",
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      },
      {
        "date": "2021-08-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      },
      {
        "date": "2021-12-09T17:55:11.020000",
        "db": "NVD",
        "id": "CVE-2021-22391"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Huawei\u00a0 Vulnerability regarding buffer size calculation error in smartphones",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2021-010872"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "other",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202108-111"
      }
    ],
    "trust": 0.6
  }
}

cnvd-2021-64514

Vulnerability from cnvd

Title: Huawei EMUI/Magic UI堆栈溢出漏洞（CNVD-2021-64514）

Description:

Huawei Emui是一款基于Android开发的移动端操作系统。Huawei Magic UI是荣耀手机的操作系统。

Huawei EMUI/Magic UI存在堆栈溢出漏洞，攻击者可利用漏洞导致系统重置。

Severity: 中

Patch Name: Huawei EMUI/Magic UI堆栈溢出漏洞（CNVD-2021-64514）的补丁

Patch Description:

Huawei Emui是一款基于Android开发的移动端操作系统。Huawei Magic UI是荣耀手机的操作系统。

Huawei EMUI/Magic UI存在堆栈溢出漏洞，攻击者可利用漏洞导致系统重置。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://consumer.huawei.com/en/support/bulletin/2021/6/

Reference: https://consumer.huawei.com/en/support/bulletin/2021/6/

Impacted products

Name
['Huawei EMUI 9.1.0', 'Huawei EMUI 10.0.0', 'Huawei EMUI 10.1.0', 'Huawei EMUI 10.1.1', 'Huawei EMUI 11.0.0', 'Huawei Magic UI 3.0.0', 'Huawei Magic UI 3.1.0', 'Huawei Magic UI 3.1.1', 'Huawei Magic UI 4.0.0', 'Huawei EMUI 9.1.1', 'Huawei Magic UI 2.1.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-22391",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2021-22391"
    }
  },
  "description": "Huawei Emui\u662f\u4e00\u6b3e\u57fa\u4e8eAndroid\u5f00\u53d1\u7684\u79fb\u52a8\u7aef\u64cd\u4f5c\u7cfb\u7edf\u3002Huawei Magic UI\u662f\u8363\u8000\u624b\u673a\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\n\nHuawei EMUI/Magic UI\u5b58\u5728\u5806\u6808\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4\u7cfb\u7edf\u91cd\u7f6e\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://consumer.huawei.com/en/support/bulletin/2021/6/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2021-64514",
  "openTime": "2021-08-24",
  "patchDescription": "Huawei Emui\u662f\u4e00\u6b3e\u57fa\u4e8eAndroid\u5f00\u53d1\u7684\u79fb\u52a8\u7aef\u64cd\u4f5c\u7cfb\u7edf\u3002Huawei Magic UI\u662f\u8363\u8000\u624b\u673a\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nHuawei EMUI/Magic UI\u5b58\u5728\u5806\u6808\u6ea2\u51fa\u6f0f\u6d1e\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u5bfc\u81f4\u7cfb\u7edf\u91cd\u7f6e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Huawei EMUI/Magic UI\u5806\u6808\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-64514\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Huawei EMUI 9.1.0",
      "Huawei EMUI 10.0.0",
      "Huawei EMUI 10.1.0",
      "Huawei EMUI 10.1.1",
      "Huawei EMUI 11.0.0",
      "Huawei Magic UI 3.0.0",
      "Huawei Magic UI 3.1.0",
      "Huawei Magic UI 3.1.1",
      "Huawei Magic UI 4.0.0",
      "Huawei EMUI 9.1.1",
      "Huawei Magic UI 2.1.1"
    ]
  },
  "referenceLink": "https://consumer.huawei.com/en/support/bulletin/2021/6/",
  "serverity": "\u4e2d",
  "submitTime": "2021-08-05",
  "title": "Huawei EMUI/Magic UI\u5806\u6808\u6ea2\u51fa\u6f0f\u6d1e\uff08CNVD-2021-64514\uff09"
}

ghsa-jrhx-6rvp-6v57

Vulnerability from github

Published

2022-05-24 19:09

Modified

2022-05-24 19:09

Details

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-22391"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-131"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-08-02T17:15:00Z",
    "severity": "HIGH"
  },
  "details": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.",
  "id": "GHSA-jrhx-6rvp-6v57",
  "modified": "2022-05-24T19:09:33Z",
  "published": "2022-05-24T19:09:33Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22391"
    },
    {
      "type": "WEB",
      "url": "https://consumer.huawei.com/en/support/bulletin/2021/6"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

fkie_cve-2021-22391

Vulnerability from fkie_nvd

Published

2021-08-02 17:15

Modified

2024-11-21 05:50

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset.

References

▼	URL	Tags
	psirt@huawei.com	https://consumer.huawei.com/en/support/bulletin/2021/6/	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://consumer.huawei.com/en/support/bulletin/2021/6/	Vendor Advisory

Impacted products

Vendor	Product	Version
huawei	emui	9.1.0
huawei	emui	9.1.1
huawei	emui	10.0.0
huawei	emui	10.1.0
huawei	emui	10.1.1
huawei	emui	11.0.0
huawei	magic_ui	2.1.1
huawei	magic_ui	3.0.0
huawei	magic_ui	3.1.0
huawei	magic_ui	3.1.1
huawei	magic_ui	4.0.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:huawei:emui:9.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "940801A5-523C-40D6-BB43-25BC78ADDE61",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:emui:9.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E6D0F53-9E85-4877-B558-4F5FB1F865D3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:emui:10.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "504F2E73-FFD0-4589-8644-FE77656BB28D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:emui:10.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "66AC7F91-917C-40A6-9983-A339EFB091F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:emui:10.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "A7FF0AD1-22C2-423B-822A-E6496CEDAB02",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:emui:11.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B701EC6-8208-4D22-95A6-B07D471A8A8B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:magic_ui:2.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "49E5FFC0-53B4-4A34-8A23-BC70AA565703",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:magic_ui:3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8A7A4346-1757-48F9-827C-13EABC357302",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:magic_ui:3.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "EFAE846A-00EA-417F-B66F-1F5396BB6139",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:magic_ui:3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B655712B-E86C-4BD2-8A99-AEA382C520E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:huawei:magic_ui:4.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6066FAB-23F5-4CB2-B89E-B00F8835AC39",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause the system to reset."
    },
    {
      "lang": "es",
      "value": "Se presenta un C\u00e1lculo Incorrecto del Tama\u00f1o del B\u00fafer en el Smartphone de Huawei. Una explotaci\u00f3n con \u00e9xito de esta vulnerabilidad puede causar al sistema reiniciarse"
    }
  ],
  "id": "CVE-2021-22391",
  "lastModified": "2024-11-21T05:50:02.033",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2021-08-02T17:15:13.983",
  "references": [
    {
      "source": "psirt@huawei.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://consumer.huawei.com/en/support/bulletin/2021/6/"
    }
  ],
  "sourceIdentifier": "psirt@huawei.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-131"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2021-22391 (GCVE-0-2021-22391)

Vulnerability from cvelistv5

gsd-2021-22391

Vulnerability from gsd

var-202108-2217

Vulnerability from variot

cnvd-2021-64514

Vulnerability from cnvd

ghsa-jrhx-6rvp-6v57

Vulnerability from github

fkie_cve-2021-22391

Vulnerability from fkie_nvd

Tags

Sightings

Nomenclature