CVE-2021-40037

There is a Vulnerability of accessing resources using an incompatible type (type confusion) in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart.
Configurations

Configuration 1 (hide)

cpe:2.3:o:huawei:harmonyos:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:huawei:emui:10.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:10.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:10.1.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:11.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:11.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:3.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:3.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:3.1.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:4.0.0:*:*:*:*:*:*:*

History

13 Jan 2022, 15:33

Type Values Removed Values Added
References (MISC) https://device.harmonyos.com/en/docs/security/update/security-bulletins-202201-0000001238736331 - (MISC) https://device.harmonyos.com/en/docs/security/update/security-bulletins-202201-0000001238736331 - Vendor Advisory
References (MISC) https://consumer.huawei.com/en/support/bulletin/2022/1/ - (MISC) https://consumer.huawei.com/en/support/bulletin/2022/1/ - Vendor Advisory
First Time Huawei
Huawei magic Ui
Huawei emui
Huawei harmonyos
CPE cpe:2.3:o:huawei:emui:10.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:10.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:3.1.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:*:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:11.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:4.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:11.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:3.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:magic_ui:3.1.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:10.1.1:*:*:*:*:*:*:*
CWE CWE-843
CVSS v2 : unknown
v3 : unknown
v2 : 4.9
v3 : 5.5

10 Jan 2022, 14:14

Type Values Removed Values Added
New CVE

Information

Published : 2022-01-10 14:10

Updated : 2023-12-10 14:09


NVD link : CVE-2021-40037

Mitre link : CVE-2021-40037

CVE.ORG link : CVE-2021-40037


JSON object : View

Products Affected

huawei

  • magic_ui
  • harmonyos
  • emui
CWE
CWE-843

Access of Resource Using Incompatible Type ('Type Confusion')