CVE-2021-22331

🗓️ 28 Apr 2021 13:15:08Reported by [email protected]Type

There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inputs sufficiently. Attackers can exploit this vulnerability by sending a malicious application request to launch JavaScript injection. This may compromise normal service. Affected product versions include HUAWEI P30 versions earlier than 10.1.0.165(C01E165R2P11), 11.0.0.118(C635E2R1P3), 11.0.0.120(C00E120R2P5), 11.0.0.138(C10E4R5P3), 11.0.0.138(C185E4R7P3), 11.0.0.138(C432E8R2P3), 11.0.0.138(C461E4R3P3), 11.0.0.138(C605E4R1P3), and 11.0.0.138(C636E4R3P3)

Reporter	Title	Published	Views	Family All 8
CNNVD	Huawei 多款产品注入漏洞	28 Apr 202100:00	–	cnnvd
CNVD	Huawei P30 JavaScript injection vulnerability	11 May 202100:00	–	cnvd
CVE	CVE-2021-22331	28 Apr 202112:19	–	cve
Cvelist	CVE-2021-22331	28 Apr 202112:19	–	cvelist
EUVD	EUVD-2021-9477	3 Oct 202520:07	–	euvd
Huawei	Security Advisory - JavaScript Injection Vulnerability in Huawei Smartphone	31 Mar 202100:00	–	huawei
Prion	Design/Logic Flaw	28 Apr 202113:15	–	prion
RedhatCVE	CVE-2021-22331	22 May 202520:47	–	redhatcve