Lucene search
China National Vulnerability DatabaseCNVD-2022-87402HistoryOct 11, 2022 - 12:00 a.m.
Huawei HarmonyOS kernel module out-of-bounds read vulnerability
2022-10-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
7
huawei
harmonyos
kernel module
out-of-bounds read
vulnerability
microkernel-based
distributed operating system
validation
user-supplied data
specially crafted data
allocated buffer
memory
cnvd
0.0004 Low
EPSS
Percentile
12.6%
Huawei HarmonyOS is an operating system from Huawei (China), Inc. providing a microkernel-based, full-scenario distributed operating system. Huawei HarmonyOS provides a microkernel-based, full-scenario distributed operating system. Huawei HarmonyOS suffers from an out-of-bounds read vulnerability, which stems from the lack of proper validation of user-supplied data by the kernel module, where specially crafted data could trigger a read beyond the end of the allocated buffer. An attacker could exploit the vulnerability to cause a memory out-of-bounds.
| CPE | Name | Operator | Version |
|---|---|---|---|
| huawei harmonyos | eq | 2.0 | |
| huawei emui | eq | 11.0.1 | |
| huawei emui | eq | 12.0.0 | |
| huawei harmonyos | eq | 2.1 |
Related
nvd
nvd
CVE-2022-41585
2022-10-14 16:15:23
cve
cve
CVE-2022-41585
2022-10-14 16:15:23
cvelist
cvelist
CVE-2022-41585
2022-10-14 00:00:00
prion
prion
Out-of-bounds
2022-10-14 16:15:00