First published: Fri May 13 2022(Updated: )
The DFX module has a UAF vulnerability.Successful exploitation of this vulnerability may affect system stability.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Emui | =10.0.0 | |
Huawei Emui | =10.1.0 | |
Huawei Emui | =10.1.1 | |
Huawei Emui | =11.0.0 | |
Huawei Emui | =11.0.1 | |
Huawei Emui | =12.0.0 | |
Huawei Harmonyos | =2.0 | |
Huawei Magic Ui | =3.0.0 | |
Huawei Magic Ui | =3.1.0 | |
Huawei Magic Ui | =3.1.1 | |
Huawei Magic Ui | =4.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-22252 is high with a CVSS score of 7.5.
The affected software versions include Huawei Emui 10.0.0, Emui 10.1.0, Emui 10.1.1, Emui 11.0.0, Emui 11.0.1, Emui 12.0.0, Harmonyos 2.0, Huawei Magic Ui 3.0.0, Magic Ui 3.1.0, and Magic Ui 3.1.1.
CVE-2022-22252 is a UAF (Use-After-Free) vulnerability in the DFX module, which could potentially impact system stability.
Successful exploitation of CVE-2022-22252 can result in system stability issues.
More information about CVE-2022-22252 can be found in the security bulletins published by Huawei: [Bulletin 1](https://consumer.huawei.com/en/support/bulletin/2022/4/) and [Bulletin 2](https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202204-0000001224076294).