CVE-2021-22294Huawei Harmonyos vulnerability

2 documents2 sources
Severity
3.3LOWNVD
EPSS
0.0%
top 93.47%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Huawei Harmonyos
Timeline
PublishedMar 2
Latest updateMay 24

Description

A component API of the HarmonyOS 2.0 has a permission bypass vulnerability. Local attackers may exploit this vulnerability to issue commands repeatedly, exhausting system service resources.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:LExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

CVEListV5huawei/harmonyosHarmonyOS 2.0

🔴Vulnerability Details

1
GHSA
GHSA-hp88-gg5p-j7jj: A component API of the HarmonyOS 22022-05-24