Lucene search

[email protected]NVD:CVE-2022-44560

HistoryNov 09, 2022 - 9:15 p.m.

CVE-2022-44560

2022-11-0921:15:18

[email protected]

web.nvd.nist.gov

cve-2022-44560

intent redirection

data modification

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.001

Percentile

33.5%

JSON

The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.

Affected configurations

Nvd

Node

huaweiemuiMatch11.0.1

huaweiemuiMatch12.0.0

huaweiemuiMatch12.0.1

Node

huaweiharmonyosMatch2.0

huaweiharmonyosMatch3.0.0

VendorProductVersionCPE
huaweiemui11.0.1cpe:2.3:o:huawei:emui:11.0.1:*:*:*:*:*:*:*
huaweiemui12.0.0cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*
huaweiemui12.0.1cpe:2.3:o:huawei:emui:12.0.1:*:*:*:*:*:*:*
huaweiharmonyos2.0cpe:2.3:o:huawei:harmonyos:2.0:*:*:*:*:*:*:*
huaweiharmonyos3.0.0cpe:2.3:o:huawei:harmonyos:3.0.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	emui	11.0.1	cpe:2.3:o:huawei:emui:11.0.1:::::::*
huawei	emui	12.0.0	cpe:2.3:o:huawei:emui:12.0.0:::::::*
huawei	emui	12.0.1	cpe:2.3:o:huawei:emui:12.0.1:::::::*
huawei	harmonyos	2.0	cpe:2.3:o:huawei:harmonyos:2.0:::::::*
huawei	harmonyos	3.0.0	cpe:2.3:o:huawei:harmonyos:3.0.0:::::::*

References

consumer.huawei.com/en/support/bulletin/2022/11/

device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433

CVSS3

5.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS

0.001

Percentile

33.5%

JSON

Related for NVD:CVE-2022-44560

cvelist1 prion1 cve1