CVSS: 6.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-48293
https://notcve.org/view.php?id=CVE-2022-48293
The Bluetooth module has an OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 • CWE-125: Out-of-bounds Read •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-48298
https://notcve.org/view.php?id=CVE-2022-48298
The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48294
https://notcve.org/view.php?id=CVE-2022-48294
The IHwAttestationService interface has a defect in authentication. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-48286
https://notcve.org/view.php?id=CVE-2022-48286
The multi-screen collaboration module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 0CVE-2022-46313
https://notcve.org/view.php?id=CVE-2022-46313
The sensor privacy module has an authentication vulnerability. Successful exploitation of this vulnerability may cause unavailability of the smartphone's camera and microphone. El módulo de privacidad del sensor tiene una vulnerabilidad de autenticación. La explotación exitosa de esta vulnerabilidad puede provocar que la cámara y el micrófono del teléfono inteligente no estén disponibles. • https://device.harmonyos.com/en/docs/security/update/security-bulletins-202212-0000001462975397 • CWE-287: Improper Authentication •