Lucene search
HuaweiCVE-2022-38977HistoryOct 14, 2022 - 4:15 p.m.
CVE-2022-38977
2022-10-1416:15:13
CWE-787
huawei
web.nvd.nist.gov
24
6
cve-2022-38977
hwairlink
heap overflow
vulnerability
nvd
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
31.8%
The HwAirlink module has a heap overflow vulnerability.Successful exploitation of this vulnerability may cause out-of-bounds writes, resulting in modification of sensitive data.
Affected configurations
Node
huaweiharmonyosMatch2.0
ORhuaweiharmonyosMatch2.1
CNA Affected
[
{
"vendor": "Huawei",
"product": "HarmonyOS",
"versions": [
{
"version": "2.0",
"status": "affected"
},
{
"version": "2.1",
"status": "affected"
}
]
}
]References
Social References
More
Related
prion
prion
Design/Logic Flaw
2022-10-14 16:15:00
nvd
nvd
CVE-2022-38977
2022-10-14 16:15:13
cvelist
cvelist
CVE-2022-38977
2022-10-14 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
EPSS
0.001
Percentile
31.8%
Related for CVE-2022-38977