Login Sign Up

CVE-2021-46887

9.8 CRITICAL

📋 TL;DR

This vulnerability in Huawei's HW_KEYMASTER module allows attackers to read memory beyond allocated boundaries due to insufficient input validation. It affects Huawei devices using vulnerable firmware versions. Successful exploitation could lead to information disclosure or system compromise.

💻 Affected Systems

Products:
  • Huawei smartphones and tablets with affected firmware
Versions: Specific firmware versions as listed in Huawei advisories
Operating Systems: Android-based Huawei EMUI
Default Config Vulnerable: ⚠️ Yes
Notes: Affects devices with vulnerable HW_KEYMASTER module implementation

📦 What is this software?

Emui by Huawei

View all CVEs affecting Emui →

Emui by Huawei

View all CVEs affecting Emui →

Emui by Huawei

View all CVEs affecting Emui →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete device compromise leading to data theft, privilege escalation, or persistent backdoor installation

🟠

Likely Case

Information disclosure of sensitive cryptographic keys or memory contents

🟢

If Mitigated

Limited impact with proper network segmentation and access controls

🌐 Internet-Facing: MEDIUM - Requires device exposure and specific conditions for remote exploitation
🏢 Internal Only: HIGH - Could be exploited by malicious insiders or compromised internal systems

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires local access or ability to execute code on device

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to Huawei security bulletins for specific patched versions

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2023/5/

Restart Required: Yes

Instructions:

1. Check Huawei security bulletin for affected devices. 2. Apply latest firmware updates via Settings > System & updates > Software update. 3. Reboot device after update completes.

🔧 Temporary Workarounds

Restrict device access

all

Limit physical and network access to vulnerable devices

Disable unnecessary services

all

Reduce attack surface by disabling unused device features

🧯 If You Can't Patch

  • Isolate affected devices on separate network segments
  • Implement strict access controls and monitoring for device usage

🔍 How to Verify

Check if Vulnerable:

Check device firmware version against Huawei's security bulletin list

Check Version:

Settings > About phone > Build number

Verify Fix Applied:

Verify firmware version is updated beyond vulnerable versions listed in advisory

📡 Detection & Monitoring

Log Indicators:

  • Unusual system crashes
  • Abnormal memory access patterns in system logs

Network Indicators:

  • Suspicious device communication patterns

SIEM Query:

Device logs showing memory access violations or keymaster module errors

📊 Metadata

CVE ID: CVE-2021-46887
CVSS v3 Score: 9.8 (CRITICAL)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Published: May 26, 2023
Last Updated: January 15, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON