Out-of-Bound Read Vulnerability in Huawei Mate 30 Smartphone
CVE-2021-22306

4.6MEDIUM

Key Information:

Vendor: Huawei
Status: Huawei Mate 30
Vendor: CVE Published:; 6 February 2021

What is CVE-2021-22306?

An out-of-bound read vulnerability exists in the Huawei Mate 30 smartphone, specifically in version 10.0.0.182(C00E180R6P2). This issue arises when a module fails to adequately verify input while processing messages. Attackers may exploit this flaw by sending carefully crafted malicious inputs to the affected module, potentially leading to service disruption and compromise of the device’s normal operations.

Affected Version(s)

HUAWEI Mate 30 10.0.0.182(C00E180R6P2)

References

https://www.huawei.com/en/psirt/security-advisories/huawe...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 6, 2021
Vulnerability Reserved
Jan 5, 2021