CVE-2021-40049

EUVD-2021-27239
There is a permission control vulnerability in the PMS module. Successful exploitation of this vulnerability can lead to sensitive system information being obtained without authorization.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 29%
Affected Products (NVD)
VendorProductVersion
huaweiemui
10.0.0
huaweiemui
10.1.0
huaweiemui
10.1.1
huaweiemui
11.0.0
huaweiemui
11.0.1
huaweiemui
12.0.0
huaweiharmonyos
2.0
huaweimagic_ui
3.1.0
huaweimagic_ui
3.1.1
huaweimagic_ui
4.0.0
𝑥
= Vulnerable software versions
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
pms
bionic
needs-triage
focal
needs-triage
impish
ignored
jammy
needs-triage
kinetic
ignored
lunar
dne
mantic
ignored
noble
needs-triage
trusty
ignored
xenial
needs-triage
Common Weakness Enumeration
References
https://consumer.huawei.com/en/support/bulletin/2022/3/
https://device.harmonyos.com/cn/docs/security/update/security-bulletins-phones-202203-0000001257385193
https://consumer.huawei.com/en/support/bulletin/2022/3/
https://device.harmonyos.com/cn/docs/security/update/security-bulletins-phones-202203-0000001257385193