Vulnerability Details CVE-2022-39000
The iAware module has a vulnerability in managing malicious apps.Successful exploitation of this vulnerability will cause malicious apps to automatically start upon system startup.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 32.6%
CVSS Severity
CVSS v3 Score 9.8
References
- https://consumer.huawei.com/en/support/bulletin/2022/9/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202209-0000001392278845
- https://consumer.huawei.com/en/support/bulletin/2022/9/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202209-0000001392278845
Products affected by CVE-2022-39000
-
cpe:2.3:o:huawei:emui:11.0.0
-
cpe:2.3:o:huawei:emui:11.0.1
-
cpe:2.3:o:huawei:emui:12.0.0
-
cpe:2.3:o:huawei:harmonyos:2.0
-
cpe:2.3:o:huawei:harmonyos:2.1
-
cpe:2.3:o:huawei:magic_ui:4.0.0