CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-48294
https://notcve.org/view.php?id=CVE-2022-48294
The IHwAttestationService interface has a defect in authentication. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-48286
https://notcve.org/view.php?id=CVE-2022-48286
The multi-screen collaboration module has a privilege escalation vulnerability. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-48288
https://notcve.org/view.php?id=CVE-2022-48288
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 • CWE-306: Missing Authentication for Critical Function •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-46762
https://notcve.org/view.php?id=CVE-2022-46762
The memory management module has a logic bypass vulnerability.Successful exploitation of this vulnerability may affect data confidentiality. El módulo de administración de memoria tiene una vulnerabilidad de omisión lógica. La explotación exitosa de esta vulnerabilidad puede afectar la confidencialidad de los datos. • https://consumer.huawei.com/en/support/bulletin/2023/1 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202301-0000001435541166 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-47976
https://notcve.org/view.php?id=CVE-2022-47976
The DMSDP module of the distributed hardware has a vulnerability that may cause imposter control connections.Successful exploitation of this vulnerability may disconnect normal service connections. El módulo DMSDP del hardware distribuido tiene una vulnerabilidad que puede causar conexiones de control impostor. La explotación exitosa de esta vulnerabilidad puede desconectar las conexiones de servicio normales. • https://consumer.huawei.com/en/support/bulletin/2023/1 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202301-0000001435541166 •