Data Confidentiality Vulnerability in My HUAWEI App
CVE-2021-40030

7.5HIGH

Key Information:

Vendor: Huawei
Status: Harmonyos; Emui; Magic Ui
Vendor: CVE Published:; 10 August 2022

Summary

The My HUAWEI app contains a design flaw that may compromise data confidentiality. Exploiting this vulnerability could allow unauthorized access to sensitive information, thereby posing a potential threat to user privacy and security.

Affected Version(s)

EMUI 12.0.0

EMUI 11.0.0

EMUI 10.1.1

References

https://consumer.huawei.com/en/support/bulletin/2022/8/

x_refsource_MISC

https://device.harmonyos.com/en/docs/security/update/secu...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 10, 2022
Vulnerability Reserved
Aug 23, 2021