CVE-2021-46894

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Jul 6, 2023

Updated: Jul 12, 2023

CWE ID 269

CWE ID 416

Summary

CVE-2021-46894 is a Use After Free (UAF) vulnerability identified in the uinput module. This issue arises when the kernel fails to properly manage memory, leading to a condition where an already freed memory block is reused. Exploiting this UAF vulnerability could potentially allow an attacker to gain kernel privilege escalation, elevating their access to critical system functions.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HarmonyOS
Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r08pDT
https://www.cve.org/CVERecord?id=CVE-2021-46894
https://nvd.nist.gov/vuln/detail/CVE-2021-46894

Back to Vulnerability Database