Vulnerability Details CVE-2021-22385
A component of the Huawei smartphone has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause Kernel Code Execution.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.4%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
References
- https://consumer.huawei.com/en/support/bulletin/2021/6/
- https://device.harmonyos.com/cn/docs/security/update/oem_security_update_phone_202106-0000001165452077
- https://consumer.huawei.com/en/support/bulletin/2021/6/
- https://device.harmonyos.com/cn/docs/security/update/oem_security_update_phone_202106-0000001165452077
Products affected by CVE-2021-22385
-
cpe:2.3:o:huawei:emui:10.1.0
-
cpe:2.3:o:huawei:emui:10.1.1
-
cpe:2.3:o:huawei:emui:11.0.0
-
cpe:2.3:o:huawei:magic_ui:3.1.0
-
cpe:2.3:o:huawei:magic_ui:3.1.1
-
cpe:2.3:o:huawei:magic_ui:4.0.0