CVE-2022-44555 — Authentication Bypass by Capture-replay in Huawei Emui

Severity

7.5HIGHNVD

EPSS

0.2%

top 62.75%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedNov 9

Latest updateNov 10

Description

The DDMP/ODMF module has a service hijacking vulnerability. Successful exploit of this vulnerability may cause services to be unavailable.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

▶CVEListV5huawei/emui11.0.1, 12.0.0, 12.0.1+2

▶NVDhuawei/emui11.0.1, 12.0.0, 12.0.1+2

▶CVEListV5huawei/harmonyos2.0, 2.1+1

▶NVDhuawei/harmonyos2.0, 2.1, 3.0.0+2

GHSA

GHSA-phjf-69j5-93r8: The DDMP/ODMF module has a service hijacking vulnerability↗2022-11-10

▶

CVEList

CVE-2022-44555: The DDMP/ODMF module has a service hijacking vulnerability↗2022-11-09

▶