Vulnerability Details CVE-2022-44557
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.3%
CVSS Severity
CVSS v3 Score 7.5
References
- https://consumer.huawei.com/en/support/bulletin/2022/11/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433
- https://consumer.huawei.com/en/support/bulletin/2022/11/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433
Products affected by CVE-2022-44557
-
cpe:2.3:o:huawei:emui:11.0.1
-
cpe:2.3:o:huawei:emui:12.0.0
-
cpe:2.3:o:huawei:emui:12.0.1
-
cpe:2.3:o:huawei:harmonyos:2.0
-
cpe:2.3:o:huawei:harmonyos:2.1
-
cpe:2.3:o:huawei:harmonyos:3.0.0