CVE-2021-37045 – This CVE describes a use-after-free vulnerabili... (How to Fix)

Q: What is the severity of CVE-2021-37045?

CVE-2021-37045 has a CVSS score of 9.8 (CRITICAL). This CVE describes a use-after-free vulnerability in Huawei smartphones that allows attackers to execute arbitrary kernel-mode code. Successful exploitation can cause device crashes or complete system compromise. Affects Huawei devices running HarmonyOS or EMUI.

📋 TL;DR

This CVE describes a use-after-free vulnerability in Huawei smartphones that allows attackers to execute arbitrary kernel-mode code. Successful exploitation can cause device crashes or complete system compromise. Affects Huawei devices running HarmonyOS or EMUI.

💻 Affected Systems

Products:

Huawei smartphones

Versions: HarmonyOS 2.0 versions before 2.0.0.230, EMUI versions before specific security patches in September 2021

Operating Systems: HarmonyOS, EMUI

Default Config Vulnerable: ⚠️ Yes

Notes: Affects Huawei devices with specific kernel versions; exact device models not specified in public advisories.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full device compromise with kernel-level code execution, allowing persistent malware installation, data theft, and complete control over the device.

🟠

Likely Case

Device instability leading to unexpected reboots, potential denial of service, and possible privilege escalation to kernel mode.

🟢

If Mitigated

Limited impact with proper patching, though device may still experience instability if exploited before patching.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: MEDIUM

Requires local access or ability to execute code on device; kernel exploitation requires specific knowledge of Huawei's kernel implementation.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: HarmonyOS 2.0.0.230 and later, EMUI with September 2021 security patches

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2021/9/

Restart Required: Yes

Instructions:

1. Check for system updates in device settings. 2. Install available security updates. 3. Reboot device after installation completes.

🧯 If You Can't Patch

Restrict physical access to devices
Implement strict application installation policies to prevent malicious apps

🔍 How to Verify

Check if Vulnerable:

Check device settings > About phone > HarmonyOS/EMUI version. If version is earlier than HarmonyOS 2.0.0.230 or lacks September 2021 security patches, device is vulnerable.

Check Version:

Settings > About phone > HarmonyOS version or EMUI version

Verify Fix Applied:

Verify HarmonyOS version is 2.0.0.230 or later, or EMUI has September 2021 security patches installed.

📡 Detection & Monitoring

Log Indicators:

Unexpected device reboots
Kernel panic logs
Suspicious kernel module loading

Network Indicators:

Unusual outbound connections from device
Suspicious network activity from kernel processes

SIEM Query:

device_logs:kernel_panic OR device_logs:unexpected_reboot AND device_vendor:Huawei

📊 Metadata

CVE ID: CVE-2021-37045

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-416

Published: December 8, 2021

Last Updated: November 21, 2024

🔗 References

https://consumer.huawei.com/en/support/bulletin/2021/9/ Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202109-0000001196270727 Vendor Advisory
https://consumer.huawei.com/en/support/bulletin/2021/9/ Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202109-0000001196270727 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-37045, you might also want to check these: