Vulnerabilities > CVE-2021-40026 - Out-of-bounds Write vulnerability in Huawei Emui, Harmonyos and Magic UI

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

huawei

CWE-787

NVD

Published: 2022-01-10

Updated: 2022-01-13

Summary

There is a Heap-based buffer overflow vulnerability in the AOD module in smartphones. Successful exploitation of this vulnerability may affect service integrity.

Vulnerable Configurations

Part	Description	Count
OS	Huawei Huawei Harmonyos - Huawei Emui 11.0.0 Huawei Emui 12.0.0 Huawei Magic UI 4.0.0	4

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://consumer.huawei.com/en/support/bulletin/2022/1/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202201-0000001238736331