Login Sign Up

CVE-2024-57957

6.6 MEDIUM

📋 TL;DR

This vulnerability involves improper log information control in Huawei's UI framework module, allowing unauthorized access to sensitive log data. It affects Huawei consumer devices running vulnerable software versions. Successful exploitation could expose confidential service information to attackers.

💻 Affected Systems

Products:
  • Huawei consumer devices with vulnerable UI framework
Versions: Specific versions not detailed in bulletin; check Huawei advisory for affected versions
Operating Systems: HarmonyOS, Android-based Huawei systems
Default Config Vulnerable: ⚠️ Yes
Notes: Affects Huawei consumer devices; enterprise/business products may have different implementations

📦 What is this software?

Harmonyos by Huawei

View all CVEs affecting Harmonyos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Attackers gain access to sensitive log data containing confidential service information, user data, or system details that could facilitate further attacks.

🟠

Likely Case

Unauthorized users access log files containing debugging information, configuration details, or partial service data that should be restricted.

🟢

If Mitigated

Proper log access controls prevent unauthorized viewing, limiting exposure to only authorized administrators with legitimate need.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: HIGH

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires access to device and knowledge of log location/access methods

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check Huawei security bulletin for specific patched versions

Vendor Advisory: https://consumer.huawei.com/en/support/bulletin/2025/2/

Restart Required: Yes

Instructions:

1. Check Huawei security bulletin for affected device models. 2. Update device software through Settings > System & updates > Software update. 3. Apply latest security patches. 4. Restart device after update.

🔧 Temporary Workarounds

Restrict log access permissions

linux

Modify log file permissions to restrict access to authorized users only

chmod 600 /path/to/log/files
chown root:root /path/to/log/files

Disable debug logging

all

Reduce sensitive information in logs by disabling debug-level logging

setprop log.tag.* WARN
adjust logging configuration to WARN/ERROR level only

🧯 If You Can't Patch

  • Implement strict access controls on log directories and files
  • Monitor log access attempts and implement alerting for unauthorized access

🔍 How to Verify

Check if Vulnerable:

Check device software version against Huawei security bulletin; examine log file permissions and accessibility

Check Version:

Settings > About phone > Software information > Build number

Verify Fix Applied:

Verify software version is updated to patched version; test log file access with unauthorized user accounts

📡 Detection & Monitoring

Log Indicators:

  • Unauthorized access attempts to log files
  • Multiple failed log access attempts from non-admin users
  • Log file permission changes

Network Indicators:

  • Unusual file transfer activity from log directories
  • Unexpected access to log-related services

SIEM Query:

source="*log*" AND (event_type="access_denied" OR user!="admin") AND target_file="*.log"

📊 Metadata

CVE ID: CVE-2024-57957
CVSS v3 Score: 6.6 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-657
EPSS Score: 0.06% exploit probability (18.8th percentile)
Published: February 6, 2025
Last Updated: March 17, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-57957, you might also want to check these:

CVE-2021-28583 7.5

This vulnerability in Magento allows attackers to bypass security restrictions by manipulating RMA (...

Same vulnerability type (CWE-657)
CVE-2025-54255 4.0

This CVE describes a violation of secure design principles in Adobe Acrobat Reader that allows secur...

Same vulnerability type (CWE-657)