Design/Logic Flaw

2024-01-1609:15:00

PRIOn knowledge base

www.prio-n.com

wms module

permission

vulnerability

service

confidentiality

7.1 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

37.2%

JSON

Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.

CPENameOperatorVersion
emuieq11.0.1
emuieq12.0.0
emuieq13.0.0
harmonyoseq3.0.0
harmonyoseq2.1.0
harmonyoseq3.1.0
harmonyoseq2.0.0
harmonyoseq4.0.0

Name	Operator	Version
emui	eq	11.0.1
emui	eq	12.0.0
emui	eq	13.0.0
harmonyos	eq	3.0.0
harmonyos	eq	2.1.0
harmonyos	eq	3.1.0
harmonyos	eq	2.0.0
harmonyos	eq	4.0.0

References

consumer.huawei.com/en/support/bulletin/2024/1/

device.harmonyos.com/en/docs/security/update/security-bulletins-202401-0000001799925977