News

Huawei releases April 2021 security patch details

Posted on

Huawei is regularly working to enhance their consumer’s device security and privacy. In this segment, the company provides a security patch for its device every month to fix various levels of exploits and problems.

Join us on Telegram

Recently, Huawei has rolled out April 2021 security improvements, enhancing system security and improving the overall performance of the devices. As of April 2021 security, 17 high and 69 medium levels of CVE, which can protect devices from threats.

In addition, this security update lists some known issues, and the latest update has resolved them. These problems usually surface in different EMUI and Magic UI versions.

A question arises here that, Where do these issues met the device? When we install security updates, these are hidden and harmful content that comes with them. These are very dangerous because they give hackers a chance to get into your device.

To ensure the safety of user devices, Huawei tries to find and repair them through monthly security instructions. Below you can check the detailed CVE information, risk level, impact, and more.

List And Details Of The CVEs

CVE 1:

CVE-2021-22333: Integer overflow vulnerability in some Huawei phones

Risk Level: High

EMUI/Magic UI affected versions: EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, EMUI 9.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Impact of this CVE on the device: Successful exploitation of this vulnerability may cause code to execute, thus obtaining system permissions.

CVE 2:

CVE-2021-22334: Malicious Wi-Fi construction vulnerability in some Huawei phones

Risk Level: Medium

EMUI/Magic UI affected versions: EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0

Impact of this CVE on the device: Successful exploitation of this vulnerability may cause app redirections.

CVE 3:

CVE-2021-22335: Heap overflow vulnerability in some Huawei phones

Risk Level: Medium

EMUI/Magic UI affected versions: EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, EMUI 9.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Impact of this CVE on the device: Successful exploitation of this vulnerability may cause exceptions in image processing.

CVE 4:

CVE-2021-22336: DoS vulnerability in some Huawei phones

Risk Level: Medium

EMUI/Magic UI affected versions: EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0

Impact of this CVE on the device: Successful exploitation of this vulnerability may cause a denial of security services on a rooted device.

CVE 5:

CVE-2021-22337: Information leak vulnerability in some Huawei phones

Risk Level: Medium

EMUI/Magic UI affected versions: EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, EMUI 9.1.0,EMUI 8.0,Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Impact of this CVE on the device: Successful exploitation of this vulnerability may cause leaking of user click data.

Via

Must Read

Exit mobile version