CVE-2021-39996

There is a Heap-based buffer overflow vulnerability with the NFC module in smartphones. Successful exploitation of this vulnerability may cause memory overflow.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
huaweiCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 46%
VendorProductVersion
huaweiharmonyos
𝑥
< 2.0
huaweiemui
10.0.0
huaweiemui
10.1.0
huaweiemui
10.1.1
huaweiemui
11.0.0
huaweiemui
11.0.1
huaweimagic_ui
3.0.0
huaweimagic_ui
3.1.0
huaweimagic_ui
3.1.1
huaweimagic_ui
4.0.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://consumer.huawei.com/en/support/bulletin/2021/12/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202112-0000001183296718
https://consumer.huawei.com/en/support/bulletin/2021/12/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202112-0000001183296718