PT-2021-7548 · Huawei · Huawei P30
Published
2021-07-07
·
Updated
2021-07-16
·
CVE-2021-22399
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
HUAWEI P30 versions 10.0.0.195(C432E22R2P5) through 10.0.0.210(C635E3R2P4)
HUAWEI P30 versions prior to 10.1.0.165(C01E165R2P11)
Description
The Bluetooth function of some Huawei smartphones has a DoS issue related to insufficient input validation. Attackers can install third-party apps to send specific broadcasts, causing the Bluetooth module to crash, resulting in abnormal Bluetooth function.
Recommendations
For HUAWEI P30 versions 10.0.0.195(C432E22R2P5) through 10.0.0.210(C635E3R2P4), update to a version later than 10.1.0.165(C01E165R2P11).
For HUAWEI P30 versions prior to 10.1.0.165(C01E165R2P11), update to version 10.1.0.165(C01E165R2P11) or later.
As a temporary workaround, consider restricting the installation of third-party apps that can send specific broadcasts to the Bluetooth module.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Huawei P30