CVE-2021-40037

medium

Description

There is a Vulnerability of accessing resources using an incompatible type (type confusion) in the MPTCP subsystem in smartphones. Successful exploitation of this vulnerability may cause the system to crash and restart.

References

https://device.harmonyos.com/en/docs/security/update/security-bulletins-202201-0000001238736331

https://consumer.huawei.com/en/support/bulletin/2022/1/

Details

Source: Mitre, NVD

Published: 2022-01-10

Updated: 2022-01-13

Risk Information

CVSS v2

Base Score: 4.9

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C

Severity: Medium

CVSS v3

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H