PT-2023-15666 · Huawei · Emui+1

Published

2023-02-09

Updated

2025-03-24

CVE-2022-48288

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Bundle management module (affected versions not specified)

Description The issue is related to a lack of authentication and control mechanisms in some APIs within the bundle management module. This could potentially affect data confidentiality if successfully exploited.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306

Related Identifiers

CVE-2022-48288

Affected Products

Emui

Harmonyos

PT-2023-15666 · Huawei · Emui+1

CVE-2022-48288

Weakness Enumeration

Related Identifiers

Affected Products

References · 7