CVE-2021-22392Incorrect Calculation of Buffer Size in Huawei Emui

CWE-131Incorrect Calculation of Buffer Size3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 72.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Magic UI
Timeline
PublishedAug 2
Latest updateMay 24

Description

There is an Incorrect Calculation of Buffer Size in Huawei Smartphone.Successful exploitation of this vulnerability may cause verification bypass and directions to abnormal addresses.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

CVEListV5huawei/emui6 versions+5
NVDhuawei/emui6 versions+5
CVEListV5huawei/magic_ui5 versions+4
NVDhuawei/magic_ui5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-p3vj-26q5-c789: There is an Incorrect Calculation of Buffer Size in Huawei Smartphone2022-05-24
CVEList
CVE-2021-22392: There is an Incorrect Calculation of Buffer Size in Huawei Smartphone2021-08-02
CVE-2021-22392 — Incorrect Calculation of Buffer Size | cvebase