First published: Fri Sep 16 2022(Updated: )
The number identification module has a path traversal vulnerability. Successful exploitation of this vulnerability may cause data disclosure.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Emui | =11.0.0 | |
Huawei Emui | =11.0.1 | |
Huawei Emui | =12.0.0 | |
Huawei Harmonyos | =2.0 | |
Huawei Magic Ui | =4.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-39001 is a path traversal vulnerability in the number identification module, which could lead to data disclosure.
CVE-2022-39001 has a severity rating of 7.5 (High).
CVE-2022-39001 affects Huawei Emui versions 11.0.0, 11.0.1, 12.0.0, Huawei Harmonyos version 2.0, and Huawei Magic Ui version 4.0.0.
CVE-2022-39001 can be exploited by exploiting the path traversal vulnerability in the number identification module, which could allow an attacker to access sensitive data.
To fix CVE-2022-39001 vulnerabilities, it is recommended to update your Huawei Emui, Harmonyos, and Magic Ui software to the latest versions available.