CVE-2021-37085Race Condition in Huawei Harmonyos

CWE-362Race Condition2 documents2 sources
Severity
5.9MEDIUMNVD
EPSS
0.1%
top 67.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Harmonyos
Timeline
PublishedDec 7
Latest updateDec 8

Description

There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages2 packages

NVDhuawei/harmonyos< 2.0
CVEListV5huawei/harmonyos2.0

🔴Vulnerability Details

1
GHSA
GHSA-cg8x-pxqh-mr33: There is a Encoding timing vulnerability in Huawei Smartphone2021-12-08