The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Huawei
  • Harmonyos
  • Emui

Configuration 1 [-]

OR cpe:2.3:o:huawei:emui:11.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:12.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:2.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:2.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:3.0.0:*:*:*:*:*:*:*
References
Link Resource
https://consumer.huawei.com/en/support/bulletin/2023/2/ Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474 Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: huawei

Published: 2023-02-09T00:00:00

Updated: 2023-02-09T00:00:00

Reserved: 2023-01-29T00:00:00

Link: CVE-2022-48296

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-02-09T17:15:14.337

Modified: 2023-02-17T13:20:07.597

Link: CVE-2022-48296

JSON object: View

cve-icon Redhat Information

No data.

CWE