Huawei has gone busy in the month of June with various things coming at once and this will continue for some more time. The company is testing its new HarmonyOS 2.0 in the Chinese market, alongside sending new security patches to the eligible devices.
Moreover, the preparations for the upcoming flagships of Huawei’s P50 series are also underway. These new sets of phones are postponed due to the shortage of chips and useful components. Meanwhile, the Mate 50 series of this year almost seem to be canceled.
Just recently, Huawei released the detail of its June 2021 security patch which will soon come to its eligible devices. This month’s security patch for the Huawei and select Honor phones and tablets fixes different levels of exploits and issues including 2 critical and 13 high levels of CVEs.
Join us on Telegram
As per the info, the new security update also resolves 5 privacy-related issues for the EMUI and Magic UI devices. These sorts of issues can help hackers to enter your device and have access to your crucial data.
Huawei is focusing on the privacy of its devices and its new HarmonyOS 2.0 also comes with improved privacy and security-related features. Check below the 5 hidden privacy issues that the new June 2021 security patch fixes.
CVE 1:
CVE-2021-22387: Deserialization vulnerability in some Huawei phones
Danger level: Medium
EMUI/Magic UI affected versions: EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0
Impact of this CVE on the device: Successful exploitation of this vulnerability may allow attempts to remotely execute commands.
CVE 2:
CVE-2021-22381: Bluetooth protocol stack vulnerability in some Huawei phones
Danger level: Medium
EMUI/Magic UI affected versions: EMUI 11.0.0, EMUI 10.1.1, Magic UI 4.0.0, Magic UI 3.1.1
Impact of this CVE on the device: Successful exploitation of this vulnerability may cause an infinite loop in DoS.
CVE 3:
CVE-2021-22379: Integer overflow vulnerability in some Huawei phones
Danger level: Low
EMUI/Magic UI affected versions: EMUI 11.0.0, Magic UI 4.0.0
Impact of this CVE on the device: Successful exploitation of this vulnerability may cause DoS of Samgr.
CVE 4:
CVE-2021-22376: Logic bypass vulnerability in some Huawei phones
Danger level: High
EMUI/Magic UI affected versions: EMUI 10.1.1, Magic UI 3.1.1
Impact of this CVE on the device: Successful exploitation of this vulnerability may affect service confidentiality, availability, and integrity.
CVE 5:
CVE-2021-22375: Logic bypass vulnerability in some Huawei phones
Danger level: High
EMUI/Magic UI affected versions: EMUI 10.1.1, Magic UI 3.1.1
Impact of this CVE on the device: Successful exploitation of this vulnerability may affect service confidentiality, availability, and integrity.
(Via)
