CVE-2022-48491

Name of the Vulnerable Software and Affected Versions HUAWEI phones (affected versions not specified)

Description The issue is related to a missing authentication procedure in certain HUAWEI phones, allowing an attacker to remotely launch a process to display ads or other windows at any time. This is due to a vulnerability in the EMUI shell of the HarmonyOS operating system, which is associated with deficiencies in the authorization procedure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.