CVE-2021-36991
HIGHHuawei EMUI and Magic UI - Unauthorized File Access via Path Traversal
Title source: llmDescription
There is an Unauthorized file access vulnerability in Huawei Smartphone due to unstandardized path input.Successful exploitation of this vulnerability by creating malicious file paths can cause unauthorized file access.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://consumer.huawei.com/en/support/bulletin/2021/7/
Scores
CVSS v3
7.5
EPSS
0.0015
EPSS Percentile
35.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
Status
published
Products (4)
huawei/emui
10.1.1
huawei/emui
11.0.0
huawei/magic_ui
3.1.1
huawei/magic_ui
4.0.0
Published
Oct 28, 2021
Tracked Since
Feb 18, 2026