CVE-2021-40012Resource Exposure in Huawei Emui

CWE-668Resource Exposure3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 60.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Huawei EmuiHuawei HarmonyosHuawei Magic UI
Timeline
PublishedJul 12
Latest updateJul 13

Description

Vulnerability of pointers being incorrectly used during data transmission in the video framework. Successful exploitation of this vulnerability may affect confidentiality.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

CVEListV5huawei/emui11.0.0, 12.0.0+1
NVDhuawei/emui11.0.0, 12.0.0+1
CVEListV5huawei/magic_ui4.0.0
NVDhuawei/magic_ui4.0.0
CVEListV5huawei/harmonyos2.0

🔴Vulnerability Details

2
GHSA
GHSA-qx39-7cf8-2gf6: Vulnerability of pointers being incorrectly used during data transmission in the video framework2022-07-13
CVEList
CVE-2021-40012: Vulnerability of pointers being incorrectly used during data transmission in the video framework2022-07-11
CVE-2021-40012 — Resource Exposure in Huawei Emui | cvebase