CVE-2022-38979

3 documents3 sources
Severity
7.5HIGH
EPSS
0.1%
top 67.38%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Huawei EmuiHuawei HarmonyosHuawei Magic UI
Timeline
PublishedSep 16
Latest updateSep 17

Description

The secure OS module has configuration defects. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages6 packages

CVEListV5huawei/emui4 versions+3
NVDhuawei/emui4 versions+3
CVEListV5huawei/magic_ui3.1.0, 3.1.1, 4.0.0+2
NVDhuawei/magic_ui3.1.0, 3.1.1, 4.0.0+2
CVEListV5huawei/harmonyos2.0, 2.1+1

🔴Vulnerability Details

2
GHSA
GHSA-6qqx-779r-x58c: The secure OS module has configuration defects2022-09-17
CVEList
CVE-2022-38979: The secure OS module has configuration defects2022-09-16
CVE-2022-38979 (HIGH CVSS 7.5) | The secure OS module has configurat | cvebase.io