Vulnerability Details CVE-2022-43495
OpenHarmony-v3.1.2 and prior versions had a DOS vulnerability in distributedhardware_device_manager when joining a network. Network attakcers can send an abonormal packet when joining a network, cause a nullptr reference and device reboot.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.4%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-43495
-
cpe:2.3:a:openharmony:openharmony:3.1
-
cpe:2.3:a:openharmony:openharmony:3.1.1
-
cpe:2.3:a:openharmony:openharmony:3.1.2