Login Sign Up

CVE-2021-40044

8.8 HIGH
Authentication Bypass

📋 TL;DR

This is a Bluetooth permission verification vulnerability in Huawei devices that allows attackers to bypass authentication and perform unauthorized operations. It affects Huawei smartphones and tablets with specific EMUI versions. Attackers within Bluetooth range could potentially compromise device security.

💻 Affected Systems

Products:
  • Huawei smartphones
  • Huawei tablets
Versions: EMUI 11.0.0, EMUI 11.0.1, EMUI 12.0.0
Operating Systems: Android with Huawei EMUI
Default Config Vulnerable: ⚠️ Yes
Notes: Affects devices with Bluetooth enabled. Specific device models not detailed in public advisories.

📦 What is this software?

Emui by Huawei

View all CVEs affecting Emui →

Emui by Huawei

View all CVEs affecting Emui →

Emui by Huawei

View all CVEs affecting Emui →

Emui by Huawei

View all CVEs affecting Emui →

Emui by Huawei

View all CVEs affecting Emui →

Magic Ui by Huawei

View all CVEs affecting Magic Ui →

Magic Ui by Huawei

View all CVEs affecting Magic Ui →

Magic Ui by Huawei

View all CVEs affecting Magic Ui →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device compromise allowing data theft, malware installation, or device control via Bluetooth without user interaction.

🟠

Likely Case

Unauthorized access to Bluetooth-connected services, data exfiltration, or privilege escalation on affected devices.

🟢

If Mitigated

Limited impact if Bluetooth is disabled or devices are patched, though physical proximity risk remains.

🌐 Internet-Facing: LOW - Requires physical proximity via Bluetooth, not internet connectivity.
🏢 Internal Only: HIGH - Attackers within Bluetooth range (typically ~10 meters) can exploit without authentication.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Vulnerability allows unauthenticated Bluetooth operations. No public exploit code available as of knowledge cutoff.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Security patch February 2022 or later

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2022/2/

Restart Required: Yes

Instructions:

1. Check for updates in Settings > System & updates > Software update. 2. Install February 2022 security patch or later. 3. Restart device after installation.

🔧 Temporary Workarounds

Disable Bluetooth

all

Turn off Bluetooth when not in use to prevent exploitation

Settings > Bluetooth > Toggle off

Restrict Bluetooth visibility

all

Set Bluetooth to non-discoverable mode to reduce attack surface

Settings > Bluetooth > Device name > Turn off visibility

🧯 If You Can't Patch

  • Disable Bluetooth completely and use wired alternatives
  • Physically isolate devices in secure areas away from potential attackers

🔍 How to Verify

Check if Vulnerable:

Check EMUI version in Settings > About phone > EMUI version. If version is 11.0.0, 11.0.1, or 12.0.0 without February 2022 security patch, device is vulnerable.

Check Version:

Settings > About phone > EMUI version

Verify Fix Applied:

Verify security patch level in Settings > About phone > Build number contains 'February 2022' or later security patch date.

📡 Detection & Monitoring

Log Indicators:

  • Unexpected Bluetooth pairing attempts
  • Unauthorized Bluetooth service access in system logs

Network Indicators:

  • Suspicious Bluetooth connections from unknown devices
  • Unusual Bluetooth traffic patterns

SIEM Query:

Device logs showing Bluetooth permission bypass or unauthorized Bluetooth operations

📊 Metadata

CVE ID: CVE-2021-40044
CVSS v3 Score: 8.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Published: February 9, 2022
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON