CVE-2021-22415

EPSS 0.18%
Veröffentlicht 02.08.2021 17:15:14
Zuletzt bearbeitet 21.11.2024 05:50:04
Quelle psirt@huawei.com
Teams Watchlist Login
Unerledigt Login

There is an Incorrect Calculation of Buffer Size Vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may cause kernel exceptions with the code.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Huawei ≫ Emui Version11.0.0

Huawei ≫ Magic Ui Version4.0.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.18%	0.367

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-131 Incorrect Calculation of Buffer Size

The product does not correctly calculate the size to be used when allocating a buffer, which could lead to a buffer overflow.

https://consumer.huawei.com/en/support/bulletin/2021/6/

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-22415

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-22415

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-22415

EUVD