The HwAirlink module has a heap overflow vulnerability in processing data packets of the proprietary protocol.Successful exploitation of this vulnerability may allow attackers to obtain process control permissions.
References
Link | Resource |
---|---|
https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
20 Oct 2022, 12:43
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-787 | |
CPE | cpe:2.3:o:huawei:harmonyos:2.0:*:*:*:*:*:*:* cpe:2.3:o:huawei:harmonyos:2.1:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
References | (MISC) https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697 - Vendor Advisory |
14 Oct 2022, 16:38
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-10-14 16:15
Updated : 2024-02-04 22:51
NVD link : CVE-2022-38980
Mitre link : CVE-2022-38980
CVE.ORG link : CVE-2022-38980
JSON object : View
Products Affected
huawei
- harmonyos
CWE
CWE-787
Out-of-bounds Write