9.1

CVE-2021-40053

There is a permission control vulnerability in the Nearby module.Successful exploitation of this vulnerability will affect availability and integrity.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HuaweiEmui Version10.0.0
HuaweiEmui Version10.1.0
HuaweiEmui Version10.1.1
HuaweiEmui Version11.0.0
HuaweiHarmonyos Version2.0
HuaweiHarmonyos Version2.1
HuaweiMagic Ui Version3.0.0
HuaweiMagic Ui Version3.1.0
HuaweiMagic Ui Version3.1.1
HuaweiMagic Ui Version4.0.0
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.7% 0.485
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.1 3.9 5.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
nvd@nist.gov 6.4 10 4.9
AV:N/AC:L/Au:N/C:N/I:P/A:P
CWE-276 Incorrect Default Permissions

During installation, installed file permissions are set to allow anyone to modify those files.

https://consumer.huawei.com/en/support/bulletin/2022/3/
Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202209-0000001392278845
Vendor Advisory