CVE-2021-22440

Published Jul 13, 2021

Last updated 3 years ago

CVSS medium 4.6

Overview

Description: There is a path traversal vulnerability in some Huawei products. The vulnerability is due to that the software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly validate the pathname. Successful exploit could allow the attacker to access a location that is outside of the restricted directory by a crafted filename. Affected product versions include:HUAWEI Mate 20 9.0.0.195(C01E195R2P1), 9.1.0.139(C00E133R3P1);HUAWEI Mate 20 Pro 9.0.0.187(C432E10R1P16), 9.0.0.188(C185E10R2P1), 9.0.0.245(C10E10R2P1), 9.0.0.266(C432E10R1P16), 9.0.0.267(C636E10R2P1), 9.0.0.268(C635E12R1P16), 9.0.0.278(C185E10R2P1); Hima-L29C 9.0.0.105(C10E9R1P16), 9.0.0.105(C185E9R1P16), 9.0.0.105(C636E9R1P16); Laya-AL00EP 9.1.0.139(C786E133R3P1); OxfordS-AN00A 10.1.0.223(C00E210R5P1); Tony-AL00B 9.1.0.257(C00E222R2P1).
Source: psirt@huawei.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 4.6
Impact score: 3.6
Exploitability score: 0.9
Vector string: CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-22

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_firmware:9.0.0.195\\(c01e195r2p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE92E62E-AA03-41CE-8D2D-C45FE1B2941D"
          },
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_firmware:9.1.0.139\\(c00e133r3p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87C7006A-2343-433D-99D8-E42B56916EC7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:mate_20:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B5322963-9375-4E4E-8119-895C224003AE"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_pro_firmware:9.0.0.187\\(c432e10r1p16\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6E98DED-2AFF-458A-BCC7-FE5B44C9D13E"
          },
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_pro_firmware:9.0.0.188\\(c185e10r2p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A2FD6B36-CC81-435B-A0FF-9C3879DDE25A"
          },
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_pro_firmware:9.0.0.245\\(c10e10r2p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F36EA4AC-0F17-4E6B-A76D-4D2E6C688746"
          },
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_pro_firmware:9.0.0.266\\(c432e10r1p16\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC13604D-AE05-4D80-B10F-8FCD530FF817"
          },
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_pro_firmware:9.0.0.267\\(c636e10r2p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A432210A-8541-4D92-A70B-F5B737A1DA9A"
          },
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_pro_firmware:9.0.0.268\\(c635e12r1p16\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AC89587-F46B-4F9C-A700-133C95830329"
          },
          {
            "criteria": "cpe:2.3:o:huawei:mate_20_pro_firmware:9.0.0.278\\(c185e10r2p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96045672-2F77-4255-84E7-A44247A7B5F2"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:mate_20_pro:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2564E28F-EF08-4381-96D8-58BB7C8C0E0C"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:hima-l29c_firmware:9.0.0.105\\(c10e9r1p16\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2012876B-40B5-4052-9F76-7270C125270B"
          },
          {
            "criteria": "cpe:2.3:o:huawei:hima-l29c_firmware:9.0.0.105\\(c185e9r1p16\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D64BE38-B4CB-41B1-8889-8A96223EE7F4"
          },
          {
            "criteria": "cpe:2.3:o:huawei:hima-l29c_firmware:9.0.0.105\\(c636e9r1p16\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A0FB8A1-F8F1-4659-A8A1-A3613BF33F10"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:hima-l29c:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "366DC5C5-9276-4921-9ABD-92941B0CEE6D"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:laya-al00ep_firmware:9.1.0.139\\(c786e133r3p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9C6A701C-6ACE-445B-8EFC-BADE8FC0B4C6"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:laya-al00ep:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5B3A54AE-DC30-429B-8FB8-BE6EB933E685"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:oxfords-an00a_firmware:10.1.0.223\\(c00e210r5p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B601B137-F4E8-49E6-ACC3-4ECF8215CF0E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:oxfords-an00a:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1F6D6CD6-3D6F-401E-8035-4D9A3F06FFA1"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:huawei:tony-al00b_firmware:9.1.0.257\\(c00e222r2p1\\):*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E044F3B1-C3EE-454D-859E-5271FCD8D74F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:huawei:tony-al00b:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "0E14B978-2A3C-4F55-8E3A-BA41AB137C33"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References