CVE-2021-36987
MEDIUMHuawei EMUI and Magic UI - Use-After-Free via Race Condition in Linked List Node Handling
Title source: llmDescription
There is a issue that nodes in the linked list being freed for multiple times in Huawei Smartphone due to race conditions. Successful exploitation of this vulnerability can cause the system to restart.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://consumer.huawei.com/en/support/bulletin/2021/7/
Scores
CVSS v3
5.9
EPSS
0.0013
EPSS Percentile
32.3%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-362
Status
published
Products (4)
huawei/emui
10.1.1
huawei/emui
11.0.0
huawei/magic_ui
3.1.1
huawei/magic_ui
4.0.0
Published
Oct 28, 2021
Tracked Since
Feb 18, 2026