Denial of Service Vulnerability in Huawei Smartphones Bluetooth Functionality
CVE-2021-22399

5.5MEDIUM

Key Information:

Vendor
Huawei
Vendor
CVE Published:
13 July 2021

Summary

A specific Denial of Service (DoS) vulnerability exists in the Bluetooth functionality of certain Huawei smartphones, which allows attackers to leverage third-party applications. By sending specific broadcast messages, an attacker can cause the Bluetooth module to crash, rendering Bluetooth features unusable. This vulnerability affects various versions of the Huawei P30 and earlier firmware, emphasizing the need for users to stay updated with the latest security patches.

Affected Version(s)

HUAWEI P30 10.0.0.195(C432E22R2P5),10.0.0.200(C00E85R2P11),10.0.0.200(C461E6R3P1),10.0.0.201(C10E7R5P1),10.0.0.201(C185E4R7P1),10.0.0.206(C605E19R1P3),10.0.0.209(C636E6R3P4),10.0.0.210(C635E3R2P4),Versions earlier than 10.1.0.165(C01E165R2P11)

References

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.