Huawei News

Huawei released November 2021 EMUI security details, HarmonyOS global awaits

November 2021 EMUI security details

Huawei launched the HarmonyOS 2.0 operating system for smartphones in June this year. Following the launch, there are many smartphones and devices that were updated with the HarmonyOS updates in the form of beta and stable also the global users are still waiting to grab this major update. Recently, the 150 million HarmonyOS 2.0 upgrade device milestone has been achieved by the company.

Apart from the HarmonyOS, the company has also upgraded its device security patches. The November 2021 Huawei EMUI security patch is now live and it fixes 1 critical, 22 high levels of CVEs, 8 medium levels of CVEs while there’s no low level of CVEs. The November 2021 security patch also fixes 2 high levels of CVE as well as 8 levels of medium CVEs.

November 2021 EMUI security CVE details:

Advertisement

Critical: CVE-2020-11264
High: CVE-2020-15358, CVE-2021-0652, CVE-2021-0706, CVE-2021-0708, CVE-2021-0651, CVE-2021-0705, CVE-2021-0643, CVE-2021-0702, CVE-2021-0703, CVE-2021-30306, CVE-2021-30305, CVE-2021-27666, CVE-2021-29647, CVE-2020-29660, CVE-2021-1977, CVE-2020-24588, CVE-2021-1980, CVE-2020-24587, CVE-2020-26139, CVE-2020-26141, CVE-2020-26145, CVE-2020-26146
Medium: CVE-2021-0941, CVE-2021-31916, CVE-2021-1966, CVE-2021-0936, CVE-2021-0935, CVE-2021-1967, CVE-2019-25045, CVE-2021-0937
Low: None

This security update includes the CVE of other third-party library patches:

High: CVE-2021-32399, CVE-2020-17541

Advertisement

Medium: CVE-2020-14314, CVE-2019-20934, CVE-2020-25641, CVE-2020-35508, CVE-2020-12352, CVE-2020-24490, CVE-2021-3564, CVE-2021-0129

This security update includes the following HUAWEI patches:

CVE-2021-37110: Timing design defects in some HUAWEI devices

Advertisement

Severity: High

Affected versions: EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, EMUI 9.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Advertisement

CVE-2021-22481: Verification errors in some HUAWEI phones

Severity: Medium

Affected versions: EMUI11.0.1

Advertisement

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2021-37096: Input verification vulnerability in some HUAWEI devices

Severity: Medium

Advertisement

Affected versions: EMUI 11.0.0, Magic UI 4.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2021-37074: Race condition vulnerability in some HUAWEI phones

Advertisement

Severity: Medium

Affected versions: EMUI 11.0.0, EMUI 10.1.0, EMUI 10.0.0, Magic UI 4.0.0, Magic UI 3.1.0, Magic UI 3.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Advertisement

CVE-2021-37069: Race condition vulnerability in some HUAWEI phones

Severity: Medium

Affected versions: EMUI10.1.1, EMUI10.1.0, EMUI10.0.0, EMUI9.1.1, EMUI9.1.0, MagicUI4.0.0, MagicUI3.1.1, MagicUI3.1.0, MagicUI3.0.0, MagicUI2.1.1

Advertisement

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2021-37039: Input verification vulnerability in some HUAWEI phones

Severity: High

Advertisement

Affected versions: EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Impact: Successful exploitation of this vulnerability may cause Bluetooth DoS.

CVE-2021-37118: Man-in-the-middle (MITM) attack vulnerability when using HUAWEI Share in some HUAWEI devices

Advertisement

Severity: Medium

Affected versions: EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Advertisement

CVE-2021-39973: Null pointer dereference in some HUAWEI phones

Severity: Medium

Affected versions: EMUI 11.0.0, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, EMUI 9.1.0, Magic UI 4.0.0, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Advertisement

Impact: Successful exploitation of this vulnerability may cause the kernel to break down.

CVE-2021-36988: Input verification vulnerability in some HUAWEI phones

Severity: Medium

Advertisement

Affected versions: EMUI 10.1.0, Magic UI 3.1.0

Impact: Successful exploitation of this vulnerability may result in code execution.

CVE-2021-39966: Uninitialized AOD driver structure in some HUAWEI devices

Advertisement

Severity: High

Affected versions: EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, EMUI 10.0.0, EMUI 9.1.1, EMUI 9.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0, Magic UI 3.0.0, Magic UI 2.1.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Advertisement

CVE-2021-37133: Unauthorized file access vulnerability in some HUAWEI phones

Severity: High

Affected versions: EMUI11.0.1

Advertisement

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2021-37126: Unstrict URI verification vulnerability in some HUAWEI devices

Severity: High

Advertisement

Affected versions: EMUI11.0.0, EMUI10.1.1, MagicUI4.0.0, MagicUI3.1.1

Impact: Successful exploitation of this vulnerability may cause directory traversal attacks and affect confidentiality.

CVE-2021-37125: Input verification absence in some HUAWEI devices

Advertisement

Severity: Medium

Affected versions: EMUI11.0.0, EMUI10.1.1, MagicUI4.0.0, MagicUI3.1.1

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

Advertisement

CVE-2021-39974: Out-of-bounds read in some HUAWEI phones

Severity: Medium

Affected versions: EMUI 10.1.0, Magic UI 3.1.0

Advertisement

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2021-39978: Security verification absence in some HUAWEI devices

Severity: Medium

Advertisement

Affected versions: EMUI10.1.0, EMUI10.0.0, EMUI9.1.0, MagicUI3.1.0, MagicUI3.0.0

Impact: Successful exploitation of this vulnerability may affect service confidentiality.

CVE-2021-37112: Incomplete device version verification vulnerability due to the integrity protection defects of the PC version of HiSuite in some HUAWEI devices

Advertisement

Severity: Medium

Affected versions: EMUI 11.0.1, EMUI 11.0.0, EMUI 10.1.1, EMUI 10.1.0, Magic UI 4.0.0, Magic UI 3.1.1, Magic UI 3.1.0.

Advertisement
Min

Min En specializes in smartphone reviews, EMUI/HarmonyOS coverage, and mobile industry analysis. His in-depth knowledge of Huawei's ecosystem, from flagship devices to emerging technologies, makes him a trusted voice in the tech community.

Leave a Comment
Share
Published by
Min
Tags: EMUIHarmonyOSHarmonyOS 2HuaweiNovember 2021 EMUINovember 2021 EMUI updateNovember 2021 EMUI updatesNovember 2021 Huawei EMUI
4 years ago

Recent Posts

Why Your Huawei Phone WiFi Keeps Disconnecting (And How I Fixed It)

Okay, so you're sitting in your favorite café, scrolling through Instagram, and suddenly your WiFi…

2 days ago

Huawei Phone Not Charging? 9 Complete Fixes

Your Huawei phone won't charge. You plug it in, nothing happens. Before you panic or…

7 days ago

How to Unlock Huawei Phone: Key Methods Without Data Loss

Locked out of your Huawei phone? Don't panic. Whether you've forgotten your password, PIN, pattern,…

1 week ago

Huawei Phone Battery Drain Fix: Complete Troubleshooting Guide (2026)

Is your Huawei phone dying in just a few hours? You're not alone. Battery drain…

1 week ago

Huawei Mate 70 Air shows up in a promotional photo

Huawei is getting ready to release a new super-thin phone called the Mate 70 Air.…

5 months ago

Huawei Mate 80 series latest Information

Tipster Digital Chat Station has confirmed that the Chinese tech giant Huawei will release new…

6 months ago