CVE-2022-48292Out-of-bounds Read in Huawei Emui

CWE-125Out-of-bounds Read3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.0%
top 88.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Harmonyos
Timeline
PublishedFeb 9

Description

The Bluetooth module has an out-of-memory (OOM) vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

CVEListV5huawei/emui11.0.1, 12.0.0, 12.0.1+2
NVDhuawei/emui11.0.1, 12.0.0, 12.0.1+2
CVEListV5huawei/harmonyos2.0, 2.1.0, 3.0.0+2
NVDhuawei/harmonyos2.0, 2.1.0, 3.0.0+2

Patches

Patch: device.harmonyos.comPatch: device.harmonyos.com

🔴Vulnerability Details

2
CVEList
CVE-2022-48292: The Bluetooth module has an out-of-memory (OOM) vulnerability2023-02-09
GHSA
GHSA-v9q5-7mjm-c2v2: The Bluetooth module has an out-of-memory (OOM) vulnerability2023-02-09
CVE-2022-48292 — Out-of-bounds Read in Huawei Emui | cvebase