Lucene search

[email protected]CVE-2021-22406

HistoryOct 28, 2021 - 1:15 p.m.

CVE-2021-22406

2021-10-2813:15:08

CWE-755

[email protected]

web.nvd.nist.gov

cve-2021-22406

uncaught exception

huawei smartphone

vulnerability

unexpected app exit

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

39.1%

JSON

There is an Uncaught Exception vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability will cause the app to exit unexpectedly.

Affected configurations

NVD

Node

huaweiemuiMatch9.1.0

huaweiemuiMatch9.1.1

huaweiemuiMatch10.0.0

huaweiemuiMatch10.1.0

huaweiemuiMatch10.1.1

huaweiemuiMatch11.0.0

huaweimagic_uiMatch2.1.1

huaweimagic_uiMatch3.0.0

huaweimagic_uiMatch3.1.0

huaweimagic_uiMatch3.1.1

huaweimagic_uiMatch4.0.0

CPENameOperatorVersion
huawei:emuihuawei emuieq9.1.0
huawei:emuihuawei emuieq9.1.1
huawei:emuihuawei emuieq10.0.0
huawei:emuihuawei emuieq10.1.0
huawei:emuihuawei emuieq10.1.1
huawei:emuihuawei emuieq11.0.0
huawei:magic_uihuawei magic uieq2.1.1
huawei:magic_uihuawei magic uieq3.0.0
huawei:magic_uihuawei magic uieq3.1.0
huawei:magic_uihuawei magic uieq3.1.1

CPE	Name	Operator	Version
huawei:emui	huawei emui	eq	9.1.0
huawei:emui	huawei emui	eq	9.1.1
huawei:emui	huawei emui	eq	10.0.0
huawei:emui	huawei emui	eq	10.1.0
huawei:emui	huawei emui	eq	10.1.1
huawei:emui	huawei emui	eq	11.0.0
huawei:magic_ui	huawei magic ui	eq	2.1.1
huawei:magic_ui	huawei magic ui	eq	3.0.0
huawei:magic_ui	huawei magic ui	eq	3.1.0
huawei:magic_ui	huawei magic ui	eq	3.1.1

Rows per page:

1-10 of 111

CNA Affected

[
  {
    "product": "EMUI",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "11.0.0"
      },
      {
        "status": "affected",
        "version": "10.1.1"
      },
      {
        "status": "affected",
        "version": "10.1.0"
      },
      {
        "status": "affected",
        "version": "10.0.0"
      },
      {
        "status": "affected",
        "version": "9.1.1"
      },
      {
        "status": "affected",
        "version": "9.1.0"
      }
    ]
  },
  {
    "product": "Magic UI",
    "vendor": "Huawei",
    "versions": [
      {
        "status": "affected",
        "version": "4.0.0"
      },
      {
        "status": "affected",
        "version": "3.1.1"
      },
      {
        "status": "affected",
        "version": "3.1.0"
      },
      {
        "status": "affected",
        "version": "3.0.0"
      },
      {
        "status": "affected",
        "version": "2.1.1"
      }
    ]
  }
]

References

consumer.huawei.com/en/support/bulletin/2021/7/

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

39.1%

JSON

Related for CVE-2021-22406

cvelist1 cnvd1 prion1 nvd1