CVE-2021-40015Race Condition in Huawei Harmonyos

CWE-362Race Condition3 documents3 sources
Severity
4.7MEDIUMNVD
EPSS
0.0%
top 96.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Huawei HarmonyosHuawei EmuiHuawei Magic UI
Timeline
PublishedFeb 9
Latest updateFeb 11

Description

There is a race condition vulnerability in the binder driver subsystem in the kernel.Successful exploitation of this vulnerability may affect kernel stability.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages6 packages

NVDhuawei/harmonyos< 2.0
CVEListV5huawei/emui2.0
NVDhuawei/emui5 versions+4
CVEListV5huawei/magic_ui5 versions+4
NVDhuawei/magic_ui4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-cx28-x5qj-hpjh: There is a race condition vulnerability in the binder driver subsystem in the kernel2022-02-11
CVEList
CVE-2021-40015: There is a race condition vulnerability in the binder driver subsystem in the kernel2022-02-09
CVE-2021-40015 — Race Condition in Huawei Harmonyos | cvebase