cvedb.io
CVE-2021-37104
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2021-09-28T15:15:07.407 · Last modified 2026-06-17T03:59:58.707

Summary

There is a server-side request forgery vulnerability in HUAWEI P40 versions 10.1.0.118(C00E116R3P3). This vulnerability is due to insufficient validation of parameters while dealing with some messages. A successful exploit could allow the attacker to gain access to certain resource which the attacker are supposed not to do.

Affected products

huawei — p40_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when huawei ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.