CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48518
https://notcve.org/view.php?id=CVE-2022-48518
Vulnerability of signature verification in the iaware system being initialized later than the time when the system broadcasts are sent. Successful exploitation of this vulnerability may cause malicious apps to start upon power-on by spoofing the package names of apps in the startup trustlist, which affects system performance. • https://consumer.huawei.com/en/support/bulletin/2023/7 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858 • CWE-665: Improper Initialization CWE CATEGORY •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2023-1695
https://notcve.org/view.php?id=CVE-2023-1695
Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2023/7 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0CVE-2023-1691
https://notcve.org/view.php?id=CVE-2023-1691
Vulnerability of failures to capture exceptions in the communication framework. Successful exploitation of this vulnerability may cause features to perform abnormally. • https://consumer.huawei.com/en/support/bulletin/2023/7 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858 • CWE-248: Uncaught Exception •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-48517
https://notcve.org/view.php?id=CVE-2022-48517
Unauthorized service access vulnerability in the DSoftBus module. Successful exploitation of this vulnerability will affect availability. • https://consumer.huawei.com/en/support/bulletin/2023/7 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858 • CWE CATEGORY •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2022-48516
https://notcve.org/view.php?id=CVE-2022-48516
Vulnerability that a unique value can be obtained by a third-party app in the DSoftBus module. Successful exploitation of this vulnerability will affect confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/7 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •