CVE-2022-48353Improper Privilege Management in Huawei Emui

CWE-269Improper Privilege Management3 documents3 sources
Severity
9.8CRITICALNVD
EPSS
0.2%
top 57.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Harmonyos
Timeline
PublishedMar 27
Latest updateMar 28

Description

Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause kernel privilege escalation, which results in system service exceptions.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages4 packages

CVEListV5huawei/emui12.0.0
NVDhuawei/emui12.0.0
CVEListV5huawei/harmonyos2.0.0

🔴Vulnerability Details

2
GHSA
GHSA-hgvv-9m7h-78q7: Some smartphones have configuration issues2023-03-28
CVEList
CVE-2022-48353: Some smartphones have configuration issues2023-03-27
CVE-2022-48353 — Improper Privilege Management | cvebase