CVE-2022-48359
https://notcve.org/view.php?id=CVE-2022-48359
The recovery mode for updates has a vulnerability that causes arbitrary disk modification. Successful exploitation of this vulnerability may affect confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/3 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202303-0000001529824505 •
CVE-2022-48291
https://notcve.org/view.php?id=CVE-2022-48291
The Bluetooth module has an authentication bypass vulnerability in the pairing process. Successful exploitation of this vulnerability may affect confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/3 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202303-0000001529824505 • CWE-306: Missing Authentication for Critical Function •
CVE-2022-48355
https://notcve.org/view.php?id=CVE-2022-48355
The Bluetooth module has a heap out-of-bounds read vulnerability. Successful exploitation of this vulnerability can cause the Bluetooth process to crash. • https://consumer.huawei.com/en/support/bulletin/2023/3 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202303-0000001529824505 • CWE-787: Out-of-bounds Write •
CVE-2022-48349
https://notcve.org/view.php?id=CVE-2022-48349
The control component has a spoofing vulnerability. Successful exploitation of this vulnerability may affect confidentiality and availability. • https://consumer.huawei.com/en/support/bulletin/2023/3 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202303-0000001529824505 •
CVE-2022-48353
https://notcve.org/view.php?id=CVE-2022-48353
Some smartphones have configuration issues. Successful exploitation of this vulnerability may cause kernel privilege escalation, which results in system service exceptions. • https://consumer.huawei.com/en/support/bulletin/2023/3 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202303-0000001529824505 •