Login Sign Up

CVE-2021-37026

7.5 HIGH
Denial of Service

📋 TL;DR

This CVE-2021-37026 is an improper input validation vulnerability in Huawei smartphones that allows attackers to cause kernel crashes through specially crafted input. The vulnerability affects Huawei devices running HarmonyOS, potentially leading to denial of service. Attackers could exploit this to crash affected devices, disrupting normal operation.

💻 Affected Systems

Products:
  • Huawei Smartphones
Versions: HarmonyOS 2.0 versions before 2.0.0.230
Operating Systems: HarmonyOS
Default Config Vulnerable: ⚠️ Yes
Notes: Affects Huawei devices running vulnerable HarmonyOS versions; specific device models not detailed in available references.

📦 What is this software?

Harmonyos by Huawei

View all CVEs affecting Harmonyos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device kernel crash leading to denial of service, requiring device restart and potential data loss or corruption during active operations.

🟠

Likely Case

Temporary device unresponsiveness or reboot, disrupting user activities and potentially causing application data loss.

🟢

If Mitigated

No impact if patched; unpatched devices remain vulnerable to denial of service attacks.

🌐 Internet-Facing: MEDIUM - Requires attacker to deliver malicious input to device, which could occur through network services or user interaction with malicious content.
🏢 Internal Only: MEDIUM - Local attackers or malicious applications could exploit this vulnerability to crash the device.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires delivering malicious input to trigger the kernel crash; no public exploit code identified in references.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: HarmonyOS 2.0.0.230 and later

Vendor Advisory: https://device.harmonyos.com/cn/docs/security/update/security-bulletins-202108-0000001180965965

Restart Required: Yes

Instructions:

1. Check current HarmonyOS version in device settings. 2. If below 2.0.0.230, navigate to Settings > System & updates > Software update. 3. Download and install available updates. 4. Restart device after update completes.

🔧 Temporary Workarounds

No specific workaround available

all

No configuration changes or commands can mitigate this kernel-level vulnerability without patching.

🧯 If You Can't Patch

  • Restrict device usage to trusted applications and networks only
  • Monitor for unusual device crashes or reboots as potential exploitation indicators

🔍 How to Verify

Check if Vulnerable:

Check HarmonyOS version in device settings: Settings > About phone > HarmonyOS version. If version is below 2.0.0.230, device is vulnerable.

Check Version:

Not applicable - check via device settings GUI on Huawei smartphones

Verify Fix Applied:

After updating, verify HarmonyOS version is 2.0.0.230 or higher in Settings > About phone > HarmonyOS version.

📡 Detection & Monitoring

Log Indicators:

  • Kernel panic logs
  • Unexpected device reboot events
  • Crash dump files in system logs

Network Indicators:

  • Unusual network traffic patterns preceding device crashes

SIEM Query:

Not applicable - device-level logs would need to be collected and analyzed locally

📊 Metadata

CVE ID: CVE-2021-37026
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-20
Published: November 23, 2021
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-37026, you might also want to check these:

CVE-2022-47190 10.0

CVE-2022-47190 allows remote attackers to upload malicious firmware containing a webshell to Generex...

Same vulnerability type (CWE-20)
CVE-2024-3400 10.0

CVE-2024-3400 is a critical command injection vulnerability in Palo Alto Networks PAN-OS GlobalProte...

Same vulnerability type (CWE-20)
CVE-2023-42802 10.0

This critical vulnerability in GLPI allows attackers to upload malicious PHP files to unauthorized d...

Same vulnerability type (CWE-20)