Lucene search
HuaweiCVELIST:CVE-2021-22331HistoryApr 28, 2021 - 12:19 p.m.
CVE-2021-22331
2021-04-2812:19:09
huawei
www.cve.org
0.001 Low
EPSS
Percentile
38.9%
There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inputs sufficiently. Attackers can exploit this vulnerability by sending a malicious application request to launch JavaScript injection. This may compromise normal service. Affected product versions include HUAWEI P30 versions earlier than 10.1.0.165(C01E165R2P11), 11.0.0.118(C635E2R1P3), 11.0.0.120(C00E120R2P5), 11.0.0.138(C10E4R5P3), 11.0.0.138(C185E4R7P3), 11.0.0.138(C432E8R2P3), 11.0.0.138(C461E4R3P3), 11.0.0.138(C605E4R1P3), and 11.0.0.138(C636E4R3P3).
CNA Affected
[
{
"product": "HUAWEI P30",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Versions earlier than 10.1.0.165(C01E165R2P11),Versions earlier than 11.0.0.118(C635E2R1P3),Versions earlier than 11.0.0.120(C00E120R2P5),Versions earlier than 11.0.0.138(C10E4R5P3),Versions earlier than 11.0.0.138(C185E4R7P3),Versions earlier than 11.0.0.138(C432E8R2P3),Versions earlier than 11.0.0.138(C461E4R3P3),Versions earlier than 11.0.0.138(C605E4R1P3),Versions earlier than 11.0.0.138(C636E4R3P3)"
}
]
}
]Related
cnvd
cnvd
Huawei P30 JavaScript injection vulnerability
2021-05-11 00:00:00
cve
cve
CVE-2021-22331
2021-04-28 13:15:08
huawei
huawei
Security Advisory - JavaScript Injection Vulnerability in Huawei Smartphone
2021-03-31 00:00:00
prion
prion
Design/Logic Flaw
2021-04-28 13:15:00
nvd
nvd
CVE-2021-22331
2021-04-28 13:15:08