First published: Thu Feb 09 2023(Updated: )
The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Emui | =11.0.1 | |
Huawei Emui | =12.0.0 | |
Huawei Emui | =12.0.1 | |
Huawei Harmonyos | =2.0 | |
Huawei Harmonyos | =2.1 | |
Huawei Harmonyos | =3.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2022-48302 is high with a severity value of 7.5.
CVE-2022-48302 affects Huawei Emui 11.0.1, Huawei Emui 12.0.0, Huawei Emui 12.0.1, Huawei Harmonyos 2.0, Huawei Harmonyos 2.1, and Huawei Harmonyos 3.0.0.
The vulnerability in the AMS module is the lack of permission verification in APIs.
Successful exploitation of the vulnerability in the AMS module may affect data confidentiality.
To fix CVE-2022-48302, it is recommended to follow the mitigation steps provided by Huawei in their security bulletin.