CVE-2022-38999 — Huawei Emui vulnerability

3 documents3 sources

Severity

9.8CRITICALNVD

EPSS

0.2%

top 51.95%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Emui Huawei Harmonyos

Timeline

PublishedSep 16

Latest updateSep 17

Description

The AOD module has the improper update of reference count vulnerability. Successful exploitation of this vulnerability may affect data integrity, confidentiality, and availability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

▶CVEListV5huawei/emui12.0.0

▶NVDhuawei/emui12.0.0

▶CVEListV5huawei/harmonyos2.0

▶NVDhuawei/harmonyos2.0

🔴Vulnerability Details

GHSA

GHSA-x4hg-pfrq-5xvq: The AOD module has the improper update of reference count vulnerability↗2022-09-17

▶

CVEList

CVE-2022-38999: The AOD module has the improper update of reference count vulnerability↗2022-09-16

▶