First published: Tue Dec 20 2022(Updated: )
Fingerprint calibration has a vulnerability of lacking boundary judgment. Successful exploitation of this vulnerability may cause out-of-bounds write.
Credit: psirt@huawei.com psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Harmonyos | <2.0 | |
Huawei Emui | =11.0.1 | |
Huawei Emui | =12.0.0 | |
<2.0 | ||
=11.0.1 | ||
=12.0.0 |
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202212-0000001462975397
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-46319 is critical with a CVSS score of 9.8.
The affected software includes Huawei HarmonyOS 2.0, Huawei Emui 11.0.1, and Huawei Emui 12.0.0.
CVE-2022-46319 involves lacking boundary judgment in fingerprint calibration, which can lead to out-of-bounds write when exploited.