CVE-2021-37109 – This vulnerability allows attackers to bypass s... (How to Fix)

Q: What is the severity of CVE-2021-37109?

CVE-2021-37109 has a CVSS score of 7.8 (HIGH). This vulnerability allows attackers to bypass security protections in Huawei modem firmware, potentially leading to memory protection failures. It affects Huawei devices with vulnerable modem firmware versions. Successful exploitation could compromise device integrity and security controls.

📋 TL;DR

This vulnerability allows attackers to bypass security protections in Huawei modem firmware, potentially leading to memory protection failures. It affects Huawei devices with vulnerable modem firmware versions. Successful exploitation could compromise device integrity and security controls.

💻 Affected Systems

Products:

Huawei smartphones and devices with vulnerable modem firmware

Versions: Specific versions not detailed in public advisory; refer to Huawei security bulletins

Operating Systems: Android-based Huawei devices

Default Config Vulnerable: ⚠️ Yes

Notes: Affects Huawei devices with specific modem firmware versions; exact models and versions require checking Huawei security bulletins

📦 What is this software?

Emui by Huawei

View all CVEs affecting Emui →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete compromise of modem functionality allowing arbitrary code execution, device takeover, and potential lateral movement to connected networks.

🟠

Likely Case

Memory corruption leading to denial of service, privilege escalation, or bypass of security controls on affected devices.

🟢

If Mitigated

Limited impact with proper network segmentation, updated firmware, and security monitoring in place.

🌐 Internet-Facing: MEDIUM

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploitation likely requires local access or specialized modem interaction; no public exploit code available

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Huawei security updates for specific device models

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2022/2/

Restart Required: Yes

Instructions:

1. Check Huawei security bulletin for affected devices. 2. Apply latest firmware updates from Huawei. 3. Reboot device after update installation.

🔧 Temporary Workarounds

Network segmentation

all

Isolate affected devices from critical networks to limit potential impact

Disable unnecessary modem features

all

Reduce attack surface by disabling unused modem functionalities

🧯 If You Can't Patch

Isolate affected devices in separate network segments with strict access controls
Implement additional monitoring for unusual modem activity or memory corruption events

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Huawei security bulletins; examine modem firmware version in device settings

Check Version:

Check device settings > About phone > Build number/Software version

Verify Fix Applied:

Verify firmware version has been updated to patched version specified in Huawei advisory

📡 Detection & Monitoring

Log Indicators:

Unusual modem activity logs
Memory protection violation events
Unexpected firmware modification attempts

Network Indicators:

Anomalous modem communication patterns
Unexpected baseband processor activity

SIEM Query:

Search for modem firmware modification events or memory protection failures in device logs

📊 Metadata

CVE ID: CVE-2021-37109

CVSS v3 Score: 7.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Published: February 9, 2022

Last Updated: November 21, 2024

🔗 References

https://consumer.huawei.com/en/support/bulletin/2022/2/ Vendor Advisory
https://consumer.huawei.com/en/support/bulletin/2022/2/ Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON