CVE-2021-22308
Published Jun 3, 2021
Last updated 3 years ago
Overview
- Description
- There is a Business Logic Errors vulnerability in Huawei Smartphone. The malicious apps installed on the device can keep taking screenshots in the background. This issue does not cause system errors, but may cause personal information leakage.
- Source
- psirt@huawei.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 3.3
- Impact score
- 1.4
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
- Severity
- LOW
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:huawei:emui:10.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "504F2E73-FFD0-4589-8644-FE77656BB28D"
},
{
"criteria": "cpe:2.3:o:huawei:emui:10.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66AC7F91-917C-40A6-9983-A339EFB091F1"
},
{
"criteria": "cpe:2.3:o:huawei:emui:10.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7FF0AD1-22C2-423B-822A-E6496CEDAB02"
},
{
"criteria": "cpe:2.3:o:huawei:emui:11.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0B701EC6-8208-4D22-95A6-B07D471A8A8B"
},
{
"criteria": "cpe:2.3:o:huawei:magic_ui:3.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8A7A4346-1757-48F9-827C-13EABC357302"
},
{
"criteria": "cpe:2.3:o:huawei:magic_ui:3.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EFAE846A-00EA-417F-B66F-1F5396BB6139"
},
{
"criteria": "cpe:2.3:o:huawei:magic_ui:3.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B655712B-E86C-4BD2-8A99-AEA382C520E7"
},
{
"criteria": "cpe:2.3:o:huawei:magic_ui:4.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F6066FAB-23F5-4CB2-B89E-B00F8835AC39"
}
],
"operator": "OR"
}
]
}
]