The HW_KEYMASTER module has a vulnerability of missing bounds check on length.Successful exploitation of this vulnerability may cause malicious construction of data, which results in out-of-bounds access.
References
Link | Resource |
---|---|
https://consumer.huawei.com/en/support/bulletin/2022/10/ | Vendor Advisory |
https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
18 Oct 2022, 14:50
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.1 |
CWE | CWE-125 | |
CPE | cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:* cpe:2.3:o:huawei:emui:11.0.1:*:*:*:*:*:*:* cpe:2.3:o:huawei:harmonyos:2.0:*:*:*:*:*:*:* |
|
References | (MISC) https://consumer.huawei.com/en/support/bulletin/2022/10/ - Vendor Advisory | |
References | (MISC) https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697 - Vendor Advisory |
14 Oct 2022, 16:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-14 16:15
Updated : 2024-02-04 22:51
NVD link : CVE-2021-46839
Mitre link : CVE-2021-46839
CVE.ORG link : CVE-2021-46839
JSON object : View
Products Affected
huawei
- harmonyos
- emui
CWE
CWE-125
Out-of-bounds Read