CVE-2021-40052Incorrect Calculation of Buffer Size in Huawei Emui

CWE-131Incorrect Calculation of Buffer Size3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 54.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Huawei EmuiHuawei HarmonyosHuawei Magic UI
Timeline
PublishedMar 10
Latest updateMar 11

Description

There is an incorrect buffer size calculation vulnerability in the video framework.Successful exploitation of this vulnerability may affect availability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

CVEListV5huawei/emui11.0.0, 11.0.1+1
NVDhuawei/emui11.0.0, 11.0.1+1
CVEListV5huawei/magic_ui4.0.0
NVDhuawei/magic_ui4.0.0
CVEListV5huawei/harmonyos2.0

🔴Vulnerability Details

2
GHSA
GHSA-9p4c-8vqh-7rpv: There is an incorrect buffer size calculation vulnerability in the video framework2022-03-11
CVEList
CVE-2021-40052: There is an incorrect buffer size calculation vulnerability in the video framework2022-03-07
CVE-2021-40052 — Incorrect Calculation of Buffer Size | cvebase