CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-22304

There is a use after free vulnerability in Taurus-AL00A 10.0.0.1(C00E1R1P1). A module may refer to some memory after it has been freed while dealing with some messages. Attackers can exploit this vulnerability by sending specific message to the affected module. This may lead to module crash, compromising normal service.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.4%

CVSS Severity

CVSS v3 Score 3.3

CVSS v2 Score 2.1

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210127-03-smartphone-en
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210127-03-smartphone-en

Products affected by CVE-2021-22304

Huawei » Taurus-Al00a » Version: N/A

cpe:2.3:h:huawei:taurus-al00a:-
Huawei » Taurus-Al00a Firmware » Version: 10.0.0.1(c00e1r1p1)

cpe:2.3:o:huawei:taurus-al00a_firmware:10.0.0.1(c00e1r1p1)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-22304

Products

Pricing

Contact Us