CVE-2021-22364

There is a denial of service vulnerability in the versions 10.1.0.126(C00E125R5P3) of HUAWEI Mate 30 and 10.1.0.152(C00E136R7P2) of HUAWEI Mate 30 (5G) . A module does not verify certain parameters sufficiently and it leads to some exceptions. Successful exploit could cause a denial of service condition.

CVSS v3 5.5 MEDIUM
CVSS v2.0 2.1 LOW

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

2.1^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210519-04-dos-en	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:huawei:mate_30_firmware:10.1.0.126\(c00e125r5p3\):*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_30:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:huawei:mate_30_5g_firmware:10.1.0.152\(c00e136r7p2\):*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_30_5g:-:*:*:*:*:*:*:*

History

08 Jun 2021, 00:39

Type	Values Removed	Values Added
CPE		cpe:2.3:o:huawei:mate_30_5g_firmware:10.1.0.152\(c00e136r7p2\):::::::* cpe:2.3:o:huawei:mate_30_firmware:10.1.0.126\(c00e125r5p3\):::::::* cpe:2.3:h:huawei:mate_30:-:::::::* cpe:2.3:h:huawei:mate_30_5g:-:::::::*
CWE		NVD-CWE-noinfo
References	~~(MISC) https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210519-04-dos-en -~~	(MISC) https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210519-04-dos-en - Vendor Advisory
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 2.1 v3 : 5.5

27 May 2021, 13:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-05-27 13:15

Updated : 2024-02-04 21:47

NVD link : CVE-2021-22364

Mitre link : CVE-2021-22364

CVE.ORG link : CVE-2021-22364

JSON object : View

Products Affected

huawei

mate_30_5g_firmware
mate_30_firmware
mate_30
mate_30_5g

CWE

NVD-CWE-noinfo

5.5 /10

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

2.1 /10

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

JSON object

Attach tags to CVE-2021-22364

5.5^/10

2.1^/10

Attach tags to `CVE-2021-22364`