ID
VAR-202108-0283
CVE
CVE-2021-22419
TITLE
HarmonyOSÂ Vulnerability for inadequate validation of data reliability in
Trust: 0.8
sources:
JVNDB: JVNDB-2021-009371
DESCRIPTION
A component of the HarmonyOS has a Insufficient Verification of Data Authenticity vulnerability. Local attackers may exploit this vulnerability to cause persistent dos. HarmonyOS Exists in an inadequate validation of data reliability vulnerabilities.Denial of service (DoS) It may be put into a state
Trust: 1.8
sources:
NVD: CVE-2021-22419 //
JVNDB: JVNDB-2021-009371 //
VULHUB: VHN-380854 //
VULMON: CVE-2021-22419
AFFECTED PRODUCTS
| vendor: | huawei | model: | harmonyos | scope: | eq | version: | 2.0 | Trust: 1.0 |
| vendor: | huawei | model: | harmonyos | scope: | - | version: | - | Trust: 0.8 |
| vendor: | huawei | model: | harmonyos | scope: | eq | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2021-009371 //
NVD: CVE-2021-22419
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
sources:
VULHUB: VHN-380854 //
VULMON: CVE-2021-22419 //
JVNDB: JVNDB-2021-009371 //
CNNVD: CNNVD-202108-316 //
NVD: CVE-2021-22419
PROBLEMTYPE DATA
| problemtype: | CWE-345 | Trust: 1.1 |
| problemtype: | Inadequate verification of data reliability (CWE-345) [NVD Evaluation ] | Trust: 0.8 |
sources:
VULHUB: VHN-380854 //
JVNDB: JVNDB-2021-009371 //
NVD: CVE-2021-22419
THREAT TYPE
local
Trust: 0.6
sources:
CNNVD: CNNVD-202108-316
TYPE
data forgery
Trust: 0.6
sources:
CNNVD: CNNVD-202108-316
PATCH
| title: | Keisei Expectations | url: | https://device.harmonyos.com/cn/docs/security/update/oem_security_update_phone_202106-0000001165452077 | Trust: 0.8 |
| title: | Huawei HarmonyOS Repair measures for data forgery problem vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=159647 | Trust: 0.6 |
sources:
JVNDB: JVNDB-2021-009371 //
CNNVD: CNNVD-202108-316
EXTERNAL IDS
| db: | NVD | id: | CVE-2021-22419 | Trust: 3.4 |
| db: | JVNDB | id: | JVNDB-2021-009371 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202108-316 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-380854 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2021-22419 | Trust: 0.1 |
sources:
VULHUB: VHN-380854 //
VULMON: CVE-2021-22419 //
JVNDB: JVNDB-2021-009371 //
CNNVD: CNNVD-202108-316 //
NVD: CVE-2021-22419
REFERENCES
| url: | https://device.harmonyos.com/cn/docs/security/update/oem_security_update_phone_202106-0000001165452077 | Trust: 1.8 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2021-22419 | Trust: 1.4 |
| url: | https://device.harmonyos.com/cn/docs/security/update/security-bulletins-phones-202106-0000001165452077 | Trust: 0.6 |
| url: | https://cwe.mitre.org/data/definitions/345.html | Trust: 0.1 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
VULHUB: VHN-380854 //
VULMON: CVE-2021-22419 //
JVNDB: JVNDB-2021-009371 //
CNNVD: CNNVD-202108-316 //
NVD: CVE-2021-22419
SOURCES
| db: | VULHUB | id: | VHN-380854 |
| db: | VULMON | id: | CVE-2021-22419 |
| db: | JVNDB | id: | JVNDB-2021-009371 |
| db: | CNNVD | id: | CNNVD-202108-316 |
| db: | NVD | id: | CVE-2021-22419 |
LAST UPDATE DATE
2024-08-14T14:50:12.796000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-380854 | date: | 2021-08-11T00:00:00 |
| db: | VULMON | id: | CVE-2021-22419 | date: | 2021-08-11T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-009371 | date: | 2022-04-21T08:58:00 |
| db: | CNNVD | id: | CNNVD-202108-316 | date: | 2021-11-29T00:00:00 |
| db: | NVD | id: | CVE-2021-22419 | date: | 2021-08-11T13:29:31.587 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-380854 | date: | 2021-08-03T00:00:00 |
| db: | VULMON | id: | CVE-2021-22419 | date: | 2021-08-03T00:00:00 |
| db: | JVNDB | id: | JVNDB-2021-009371 | date: | 2022-04-21T00:00:00 |
| db: | CNNVD | id: | CNNVD-202108-316 | date: | 2021-08-03T00:00:00 |
| db: | NVD | id: | CVE-2021-22419 | date: | 2021-08-03T18:15:08.090 |