CVE-2021-37075 – This CVE describes a credentials management vul... (How to Fix)

Q: What is the severity of CVE-2021-37075?

CVE-2021-37075 has a CVSS score of 7.5 (HIGH). This CVE describes a credentials management vulnerability in Huawei smartphones that could allow unauthorized access to sensitive authentication data. Successful exploitation may compromise confidentiality of user credentials. Affected users are those with vulnerable Huawei smartphone models running specific HarmonyOS versions.

📋 TL;DR

This CVE describes a credentials management vulnerability in Huawei smartphones that could allow unauthorized access to sensitive authentication data. Successful exploitation may compromise confidentiality of user credentials. Affected users are those with vulnerable Huawei smartphone models running specific HarmonyOS versions.

💻 Affected Systems

Products:

Huawei smartphones

Versions: Specific HarmonyOS versions prior to October 2021 security updates

Operating Systems: HarmonyOS

Default Config Vulnerable: ⚠️ Yes

Notes: Exact models and versions detailed in Huawei security bulletins; requires local access or malicious app installation.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers gain unauthorized access to user credentials, potentially leading to account takeover, data theft, and further system compromise.

🟠

Likely Case

Local attackers or malicious apps could extract stored credentials, compromising user accounts and sensitive data.

🟢

If Mitigated

With proper access controls and updated devices, impact is limited to isolated credential exposure with minimal lateral movement.

🌐 Internet-Facing: LOW

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation likely requires local access or malicious app with appropriate permissions; no public exploit code available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: October 2021 security updates for HarmonyOS

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2021/10/

Restart Required: Yes

Instructions:

1. Check for updates in Settings > System & updates > Software update. 2. Install available security updates. 3. Restart device after installation.

🔧 Temporary Workarounds

Restrict app permissions

all

Limit app permissions to reduce attack surface for credential extraction

Enable device encryption

all

Ensure device encryption is active to protect stored credentials

🧯 If You Can't Patch

Isolate vulnerable devices from sensitive networks and data
Implement strict app installation policies and monitor for suspicious activity

🔍 How to Verify

Check if Vulnerable:

Check device model and HarmonyOS version in Settings > About phone, compare with Huawei security bulletins

Check Version:

Settings > About phone > HarmonyOS version

Verify Fix Applied:

Verify HarmonyOS version is October 2021 or later security update in Settings > About phone

📡 Detection & Monitoring

Log Indicators:

Unusual credential access patterns in system logs
Multiple failed authentication attempts from unexpected sources

Network Indicators:

Unexpected credential transmission to external servers
Anomalous authentication traffic patterns

SIEM Query:

source="huawei_device" AND (event_type="credential_access" OR auth_failure_count > threshold)

📊 Metadata

CVE ID: CVE-2021-37075

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Published: December 8, 2021

Last Updated: November 21, 2024

🔗 References

https://consumer.huawei.com/en/support/bulletin/2021/10/ Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202109-0000001196270727 Vendor Advisory
https://consumer.huawei.com/en/support/bulletin/2021/10/ Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202109-0000001196270727 Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON