Login Sign Up

CVE-2021-22302

7.1 HIGH

📋 TL;DR

This is an out-of-bounds read vulnerability in certain Huawei smartphones where a module fails to properly validate input. Attackers can exploit this by sending malicious input through a specific app, potentially causing service disruption or information disclosure. Affected devices include Huawei Taurus-AL00A smartphones running specific firmware versions.

💻 Affected Systems

Products:
  • Huawei Taurus-AL00A
Versions: 10.0.0.1(C00E1R1P1)
Operating Systems: Android-based Huawei EMUI
Default Config Vulnerable: ⚠️ Yes
Notes: Specific module vulnerability requires exploitation through particular apps

📦 What is this software?

Taurus Al00a Firmware by Huawei

View all CVEs affecting Taurus Al00a Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Information disclosure leading to sensitive data exposure, or service disruption causing denial of service

🟠

Likely Case

Application crash or service disruption affecting normal smartphone functionality

🟢

If Mitigated

Minimal impact if input validation is implemented or vulnerable component is isolated

🌐 Internet-Facing: MEDIUM - Requires malicious app installation but could be combined with other attack vectors
🏢 Internal Only: LOW - Primarily affects individual device users rather than enterprise networks

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires malicious app installation and specific input to trigger the vulnerability

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Later versions than 10.0.0.1(C00E1R1P1)

Vendor Advisory: https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210127-01-smartphone-en

Restart Required: Yes

Instructions:

1. Check for system updates in Settings > System & updates > Software update. 2. Install available security updates. 3. Restart device after update completes.

🔧 Temporary Workarounds

App installation restrictions

android

Restrict installation of apps from unknown sources to prevent malicious app delivery

Settings > Security > Install unknown apps > Disable for all apps

App permission review

android

Review and restrict permissions for suspicious or unnecessary apps

Settings > Apps > [App Name] > Permissions > Review and disable unnecessary permissions

🧯 If You Can't Patch

  • Isolate device from sensitive networks and data
  • Implement mobile device management with strict app control policies

🔍 How to Verify

Check if Vulnerable:

Check device model and firmware version in Settings > About phone > Build number

Check Version:

Settings > About phone > Build number

Verify Fix Applied:

Verify firmware version is newer than 10.0.0.1(C00E1R1P1) and check for recent security updates

📡 Detection & Monitoring

Log Indicators:

  • Application crashes in system logs
  • Memory access violation errors

Network Indicators:

  • Unusual app network traffic patterns

SIEM Query:

device_model:Huawei_Taurus-AL00A AND firmware_version:10.0.0.1* AND (event_type:crash OR memory_violation)

📊 Metadata

CVE ID: CVE-2021-22302
CVSS v3 Score: 7.1 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
CWE: CWE-125
Published: February 6, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-22302, you might also want to check these:

CVE-2021-41556 10.0

CVE-2021-41556 is a critical out-of-bounds read vulnerability in Squirrel scripting language that al...

Same vulnerability type (CWE-125)
CVE-2024-22004 10.0

This vulnerability allows attackers with privileged access on Linux non-secure operating systems to ...

Same vulnerability type (CWE-125)
CVE-2021-21777 10.0

CVE-2021-21777 is a critical out-of-bounds read vulnerability in the Ethernet/IP UDP handler of OpEN...

Same vulnerability type (CWE-125)