CVE-2022-48293Out-of-bounds Read in Huawei Emui

CWE-125Out-of-bounds Read3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.0%
top 88.49%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Harmonyos
Timeline
PublishedFeb 9

Description

The Bluetooth module has an OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.8 | Impact: 3.6

Affected Packages4 packages

CVEListV5huawei/emui11.0.1, 12.0.0, 12.0.1+2
NVDhuawei/emui11.0.1, 12.0.0, 12.0.1+2
CVEListV5huawei/harmonyos2.0, 2.1.0, 3.0.0+2
NVDhuawei/harmonyos2.0, 2.1.0, 3.0.0+2

Patches

Patch: device.harmonyos.comPatch: device.harmonyos.com

🔴Vulnerability Details

2
GHSA
GHSA-m48w-94wx-3fq6: The Bluetooth module has an OOM vulnerability2023-02-09
CVEList
CVE-2022-48293: The Bluetooth module has an OOM vulnerability2023-02-09
CVE-2022-48293 — Out-of-bounds Read in Huawei Emui | cvebase