Login Sign Up

CVE-2021-39992

7.8 HIGH

📋 TL;DR

CVE-2021-39992 is an improper security permission configuration vulnerability in Huawei ACPU that allows attackers to bypass intended security restrictions. Successful exploitation could compromise service confidentiality, integrity, and availability. This affects Huawei devices running vulnerable versions of ACPU software.

💻 Affected Systems

Products:
  • Huawei devices with ACPU
Versions: Specific versions not detailed in provided references; check Huawei bulletins for exact affected versions
Operating Systems: Huawei HarmonyOS, Android-based Huawei systems
Default Config Vulnerable: ⚠️ Yes
Notes: Vulnerability exists in permission configuration of ACPU component; exact affected device models require checking Huawei security bulletins

📦 What is this software?

Emui by Huawei

View all CVEs affecting Emui →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise allowing unauthorized access to sensitive data, service disruption, and potential lateral movement within the network.

🟠

Likely Case

Unauthorized access to restricted system functions, privilege escalation, and potential data exfiltration.

🟢

If Mitigated

Limited impact with proper access controls and network segmentation in place.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires understanding of ACPU permission mechanisms; no public exploit code available based on provided references

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Huawei security update for specific device models

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2022/2/

Restart Required: Yes

Instructions:

1. Check Huawei security bulletin for affected devices. 2. Apply latest security updates from Huawei. 3. Reboot device after update installation.

🔧 Temporary Workarounds

Network Segmentation

all

Isolate affected devices from critical networks to limit potential damage

Access Control Restrictions

all

Implement strict access controls and principle of least privilege

🧯 If You Can't Patch

  • Isolate affected systems in separate network segments with strict firewall rules
  • Implement additional monitoring and logging for suspicious ACPU-related activities

🔍 How to Verify

Check if Vulnerable:

Check device model and software version against Huawei security bulletin; verify if running vulnerable ACPU version

Check Version:

Device-specific; typically in Settings > About Phone > Software Information on Huawei devices

Verify Fix Applied:

Confirm installation of latest security updates from Huawei; verify version number matches patched version in advisory

📡 Detection & Monitoring

Log Indicators:

  • Unauthorized access attempts to ACPU services
  • Permission escalation events
  • Abnormal system calls related to security permissions

Network Indicators:

  • Unusual network traffic from affected devices
  • Attempts to access restricted ACPU endpoints

SIEM Query:

Search for events related to ACPU permission changes or unauthorized access attempts on Huawei devices

📊 Metadata

CVE ID: CVE-2021-39992
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-732
Published: February 9, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2021-39992, you might also want to check these:

CVE-2021-33509 9.9

This vulnerability allows remote authenticated managers in Plone to perform arbitrary disk I/O opera...

Same vulnerability type (CWE-732)
CVE-2024-5618 9.9

This vulnerability allows attackers to access functionality they shouldn't have permission to use in...

Same vulnerability type (CWE-732)
CVE-2023-40622 9.9

This vulnerability in SAP BusinessObjects Business Intelligence Platform allows authenticated attack...

Same vulnerability type (CWE-732)