exploitDog

CVE-2021-22305

Опубликовано: 06 фев. 2021

Источник: nvd

CVSS3: 3.3

CVSS2: 2.1

EPSS Низкий

Описание

There is a buffer overflow vulnerability in Mate 30 10.1.0.126(C00E125R5P3). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause buffer overflow, compromising normal service.

Ссылки

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210127-04-smartphone-en
Vendor Advisory
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20210127-04-smartphone-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:mate_30_firmware:10.1.0.126\(c00e125r5p3\):*:*:*:*:*:*:*

cpe:2.3:h:huawei:mate_30:-:*:*:*:*:*:*:*

EPSS

Процентиль: 7%

0.00027

Низкий

3.3 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-120

Связанные уязвимости

GHSA-34p8-x6j6-mmg5

github

больше 3 лет назад

There is a buffer overflow vulnerability in Mate 30 10.1.0.126(C00E125R5P3). A module does not verify the some input when dealing with messages. Attackers can exploit this vulnerability by sending malicious input through specific module. This could cause buffer overflow, compromising normal service.

EPSS

Процентиль: 7%

0.00027

Низкий

3.3 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-120