Login Sign Up

CVE-2021-22418

7.8 HIGH

📋 TL;DR

This CVE describes an integer overflow vulnerability in HarmonyOS that allows local attackers to trigger memory corruption. Attackers could exploit this to potentially execute arbitrary code or cause denial of service. The vulnerability affects HarmonyOS devices where local access is possible.

💻 Affected Systems

Products:
  • HarmonyOS
Versions: Specific versions not detailed in references, but affected versions prior to June 2021 patches
Operating Systems: HarmonyOS
Default Config Vulnerable: ⚠️ Yes
Notes: Affects HarmonyOS devices where the vulnerable component is present. Exact component not specified in available references.

📦 What is this software?

Harmonyos by Huawei

View all CVEs affecting Harmonyos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Local privilege escalation leading to full system compromise, arbitrary code execution, or persistent backdoor installation.

🟠

Likely Case

Local denial of service, application crashes, or limited privilege escalation within the affected component.

🟢

If Mitigated

Contained impact within sandboxed environment with proper memory protections and exploit mitigations enabled.

🌐 Internet-Facing: LOW - Requires local access to exploit, not directly reachable from internet.
🏢 Internal Only: HIGH - Local attackers (including malicious apps or users) can exploit this vulnerability.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Requires local access and knowledge of the vulnerable component. Integer overflow exploitation typically requires specific conditions to achieve code execution.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: June 2021 security update

Vendor Advisory: https://device.harmonyos.com/cn/docs/security/update/oem_security_update_phone_202106-0000001165452077

Restart Required: Yes

Instructions:

1. Check for available updates in device settings. 2. Apply the June 2021 security update. 3. Reboot device after installation completes.

🔧 Temporary Workarounds

Restrict local access

all

Limit physical and logical access to devices to trusted users only

Application sandboxing

all

Ensure applications run with minimal privileges and proper sandboxing

🧯 If You Can't Patch

  • Isolate affected devices from critical networks and sensitive data
  • Implement strict access controls and monitor for suspicious local activity

🔍 How to Verify

Check if Vulnerable:

Check HarmonyOS version in device settings. If version predates June 2021 security update, device is likely vulnerable.

Check Version:

Settings > System & updates > Software update (HarmonyOS specific path)

Verify Fix Applied:

Verify HarmonyOS version shows June 2021 security update applied in device settings.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected process crashes
  • Memory access violations
  • Abnormal system behavior from local applications

Network Indicators:

  • Not applicable - local vulnerability

SIEM Query:

Search for process crashes or memory violation events from HarmonyOS devices

📊 Metadata

CVE ID: CVE-2021-22418
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-190
Published: August 3, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-22418, you might also want to check these:

CVE-2025-64721 10.0

This vulnerability in Sandboxie allows sandboxed processes to exploit an integer overflow in the Sbi...

Same vulnerability type (CWE-190)
CVE-2025-52581 9.8

An integer overflow vulnerability in libbiosig's GDF file parsing allows arbitrary code execution wh...

Same vulnerability type (CWE-190)
CVE-2025-53518 9.8

An integer overflow vulnerability in libbiosig's ABF file parser allows arbitrary code execution whe...

Same vulnerability type (CWE-190)