CVE-2022-46312 - Vulnerability Details - OpenCVE

The application management module has a vulnerability in permission verification. Successful exploitation of this vulnerability causes unexpected clear of device applications.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Huawei	Emui Harmonyos

Configuration 1 [-]

cpe:2.3:o:huawei:harmonyos:*:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:o:huawei:emui:11.0.1:::::::*
	cpe:2.3:o:huawei:emui:12.0.0:::::::*
	cpe:2.3:o:huawei:emui:12.0.1:::::::*

No data.

References

Link	Providers
https://consumer.huawei.com/en/support/bulletin/2022/12/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202212-0000001462975397

History

No history.

MITRE

Status: PUBLISHED

Assigner: huawei

Published: 2022-12-20T00:00:00

Updated: 2024-08-03T14:31:46.668Z

Reserved: 2022-11-29T00:00:00

Link: CVE-2022-46312

Vulnrichment

No data.

NVD

Status : Modified

Published: 2022-12-20T21:15:11.257

Modified: 2024-11-21T07:30:21.907

Link: CVE-2022-46312

Redhat

No data.

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:harmonyos:*:*:*:*:*:*:*:*", "matchCriteriaId": "4024E181-210A-401E-A839-80D80F920C19", "versionEndExcluding": "2.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:huawei:emui:11.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "511F8CE2-C2B6-4A08-B992-49D9B75B8655", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "A974CA73-84E8-480B-BB4C-4A81D0C985B2", "vulnerable": true}, {"criteria": "cpe:2.3:o:huawei:emui:12.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "2DF07E7F-3A18-4B74-B73D-DF3647C2A48F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The application management module has a vulnerability in permission verification. Successful exploitation of this vulnerability causes unexpected clear of device applications."}, {"lang": "es", "value": "El m\u00f3dulo de gesti\u00f3n de aplicaciones tiene una vulnerabilidad en la verificaci\u00f3n de permisos. La explotaci\u00f3n exitosa de esta vulnerabilidad provoca una eliminaci\u00f3n inesperada de las aplicaciones del dispositivo."}], "id": "CVE-2022-46312", "lastModified": "2024-11-21T07:30:21.907", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-12-20T21:15:11.257", "references": [{"source": "psirt@huawei.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://consumer.huawei.com/en/support/bulletin/2022/12/"}, {"source": "psirt@huawei.com", "tags": ["Patch", "Vendor Advisory"], "url": "https://device.harmonyos.com/en/docs/security/update/security-bulletins-202212-0000001462975397"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://consumer.huawei.com/en/support/bulletin/2022/12/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "https://device.harmonyos.com/en/docs/security/update/security-bulletins-202212-0000001462975397"}], "sourceIdentifier": "psirt@huawei.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}