CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2022-48302
https://notcve.org/view.php?id=CVE-2022-48302
The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2022-48300
https://notcve.org/view.php?id=CVE-2022-48300
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 • CWE-306: Missing Authentication for Critical Function •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2022-48289
https://notcve.org/view.php?id=CVE-2022-48289
The bundle management module lacks authentication and control mechanisms in some APIs. Successful exploitation of this vulnerability may affect data confidentiality. • https://consumer.huawei.com/en/support/bulletin/2023/2 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 • CWE-306: Missing Authentication for Critical Function •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-46761
https://notcve.org/view.php?id=CVE-2022-46761
The system has a vulnerability that may cause dynamic hiding and restoring of app icons.Successful exploitation of this vulnerability may cause malicious hiding of app icons. El sistema tiene una vulnerabilidad que puede provocar el ocultamiento y la restauración dinámica de los íconos de las aplicaciones. La explotación exitosa de esta vulnerabilidad puede causar el ocultamiento malicioso de los íconos de las aplicaciones. • https://consumer.huawei.com/en/support/bulletin/2023/1 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202301-0000001435541166 •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-47976
https://notcve.org/view.php?id=CVE-2022-47976
The DMSDP module of the distributed hardware has a vulnerability that may cause imposter control connections.Successful exploitation of this vulnerability may disconnect normal service connections. El módulo DMSDP del hardware distribuido tiene una vulnerabilidad que puede causar conexiones de control impostor. La explotación exitosa de esta vulnerabilidad puede desconectar las conexiones de servicio normales. • https://consumer.huawei.com/en/support/bulletin/2023/1 https://device.harmonyos.com/en/docs/security/update/security-bulletins-202301-0000001435541166 •