CVE-2021-31573 – CVE-2021-31573 is a command injection vulnerabi... (How to Fix)

Q: What is the severity of CVE-2021-31573?

CVE-2021-31573 has a CVSS score of 9.8 (CRITICAL). CVE-2021-31573 is a command injection vulnerability in MediaTek Config Manager that allows remote attackers to execute arbitrary commands without authentication. This could lead to full system compromise on affected devices. The vulnerability affects MediaTek-based devices running vulnerable versions of the Config Manager software.

📋 TL;DR

CVE-2021-31573 is a command injection vulnerability in MediaTek Config Manager that allows remote attackers to execute arbitrary commands without authentication. This could lead to full system compromise on affected devices. The vulnerability affects MediaTek-based devices running vulnerable versions of the Config Manager software.

💻 Affected Systems

Products:

MediaTek Config Manager

Versions: Specific vulnerable versions not publicly detailed in CVE description

Operating Systems: Android-based systems using MediaTek chipsets

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with MediaTek chipsets where Config Manager is present and vulnerable. Exact device models not specified in CVE description.

📦 What is this software?

En7528 Firmware by Mediatek

View all CVEs affecting En7528 Firmware →

En7580 Firmware by Mediatek

View all CVEs affecting En7580 Firmware →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system takeover with root privileges, allowing installation of persistent malware, data theft, and device compromise.

🟠

Likely Case

Remote code execution leading to unauthorized access, data exfiltration, and potential lateral movement within the network.

🟢

If Mitigated

Limited impact if proper network segmentation and access controls prevent exploitation attempts.

🌐 Internet-Facing: HIGH - No authentication required and user interaction not needed makes internet-facing devices extremely vulnerable.

🏢 Internal Only: HIGH - Even internally, the lack of authentication requirement makes this easily exploitable by any network-connected attacker.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

The vulnerability requires no authentication and no user interaction, making it trivial to exploit once the attack vector is understood.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Patched in update A20210009

Vendor Advisory: https://corp.mediatek.com/product-security-acknowledgements

Restart Required: Yes

Instructions:

1. Check device manufacturer for available security updates. 2. Apply MediaTek security patch A20210009. 3. Reboot device after patch installation. 4. Verify patch installation through version checking.

🔧 Temporary Workarounds

Network Access Restriction

linux

Restrict network access to devices running MediaTek Config Manager

iptables -A INPUT -p tcp --dport [CONFIG_MANAGER_PORT] -j DROP
iptables -A INPUT -p udp --dport [CONFIG_MANAGER_PORT] -j DROP

Service Disablement

android

Disable MediaTek Config Manager service if not required

pm disable com.mediatek.configmanager
stop configmanager_service

🧯 If You Can't Patch

Segment affected devices into isolated network zones with strict firewall rules
Implement network monitoring and intrusion detection for Config Manager traffic

🔍 How to Verify

Check if Vulnerable:

Check if MediaTek Config Manager is running and check version against known vulnerable releases. Use: 'ps -A | grep configmanager' and 'dumpsys package com.mediatek.configmanager | grep version'

Check Version:

dumpsys package com.mediatek.configmanager | grep versionName

Verify Fix Applied:

Verify patch A20210009 is installed and Config Manager version is updated. Check security patch level with: 'getprop ro.build.version.security_patch'

📡 Detection & Monitoring

Log Indicators:

Unusual process execution from Config Manager context
Suspicious command execution patterns in system logs
Unexpected network connections from Config Manager service

Network Indicators:

Unexpected traffic to/from Config Manager ports
Suspicious payloads in Config Manager protocol

SIEM Query:

source="system_logs" AND process="configmanager" AND (command="*sh*" OR command="*bash*" OR command="*cmd*")

📊 Metadata

CVE ID: CVE-2021-31573

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-77

Published: February 6, 2023

Last Updated: March 26, 2025

🔗 References

https://corp.mediatek.com/product-security-acknowledgements Vendor Advisory
https://corp.mediatek.com/product-security-acknowledgements Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-31573, you might also want to check these: