CVE-2024-5464 – This vulnerability in Huawei's NearLink module ... (How to Fix)

Q: What is the severity of CVE-2024-5464?

CVE-2024-5464 has a CVSS score of 4.0 (MEDIUM). This vulnerability in Huawei's NearLink module allows unauthorized access to sensitive information due to insufficient permission verification. It affects Huawei devices using the vulnerable NearLink module. Attackers could potentially access confidential service data without proper authentication.

📋 TL;DR

This vulnerability in Huawei's NearLink module allows unauthorized access to sensitive information due to insufficient permission verification. It affects Huawei devices using the vulnerable NearLink module. Attackers could potentially access confidential service data without proper authentication.

💻 Affected Systems

Products:

Huawei devices with NearLink module

Versions: Specific versions not detailed in advisory; check Huawei bulletins

Operating Systems: HarmonyOS, Android-based Huawei systems

Default Config Vulnerable: ⚠️ Yes

Notes: Affects devices with NearLink functionality enabled; exact product list requires checking Huawei's detailed bulletins

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Unauthorized access to confidential service data, potentially exposing sensitive information or allowing service disruption.

🟠

Likely Case

Limited information disclosure affecting specific NearLink services, potentially exposing configuration or operational data.

🟢

If Mitigated

Minimal impact with proper network segmentation and access controls limiting NearLink module exposure.

🌐 Internet-Facing: LOW

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Exploitation requires some level of access to the device or network; no public exploit code available

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Huawei security bulletins for specific patched versions

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2024/6/

Restart Required: Yes

Instructions:

1. Check Huawei security bulletin for affected devices. 2. Apply latest security updates from Huawei. 3. Restart device after update. 4. Verify update applied successfully.

🔧 Temporary Workarounds

Disable NearLink if not needed

all

Turn off NearLink functionality to eliminate attack surface

Settings > More connections > NearLink > Turn off

Network segmentation

all

Isolate devices with NearLink from sensitive networks

🧯 If You Can't Patch

Implement strict network access controls to limit NearLink module exposure
Monitor for unusual NearLink activity and implement additional authentication layers

🔍 How to Verify

Check if Vulnerable:

Check device settings for NearLink version and compare with Huawei security bulletins

Check Version:

Settings > About phone > Build number (check for security patch level)

Verify Fix Applied:

Verify security update installation and check NearLink version against patched versions in advisory

📡 Detection & Monitoring

Log Indicators:

Unauthorized access attempts to NearLink services
Unexpected permission requests for NearLink

Network Indicators:

Unusual NearLink protocol traffic patterns
Unauthorized device connections via NearLink

SIEM Query:

source="huawei_device" AND (event="nearlink_access" OR event="permission_violation")

📊 Metadata

CVE ID: CVE-2024-5464

CVSS v3 Score: 4.0 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE: CWE-200

Published: June 14, 2024

Last Updated: November 21, 2024

🔗 References

https://consumer.huawei.com/en/support/bulletin/2024/6/ Vendor Advisory
https://consumer.huawei.com/en/support/bulletin/2024/6/ Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-5464, you might also want to check these: