PT-2023-15667 · Huawei · Emui+1

Published

2023-02-09

Updated

2025-03-24

CVE-2022-48289

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Bundle management module (affected versions not specified)

Description The issue is related to the lack of authentication and control mechanisms in some APIs of the bundle management module. This could potentially affect data confidentiality.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306

Related Identifiers

CVE-2022-48289

Affected Products

Emui

Harmonyos

PT-2023-15667 · Huawei · Emui+1

CVE-2022-48289

Weakness Enumeration

Related Identifiers

Affected Products

References · 6