CVE-2021-40054Integer Underflow (Wrap or Wraparound) in Huawei Emui

CWE-191Integer Underflow (Wrap or Wraparound)3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 70.85%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Magic UI
Timeline
PublishedMar 10
Latest updateMar 11

Description

There is an integer underflow vulnerability in the atcmdserver module. Successful exploitation of this vulnerability may affect integrity.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

CVEListV5huawei/emui6 versions+5
NVDhuawei/emui6 versions+5
CVEListV5huawei/magic_ui4 versions+3
NVDhuawei/magic_ui4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-45cf-q4mp-fgvx: There is an integer underflow vulnerability in the atcmdserver module2022-03-11
CVEList
CVE-2021-40054: There is an integer underflow vulnerability in the atcmdserver module2022-03-07
CVE-2021-40054 — Integer Underflow (Wrap or Wraparound) | cvebase