CVE-2022-44548
4.3
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Summary
There is a vulnerability in permission verification during the Bluetooth pairing process. Successful exploitation of this vulnerability may cause the dialog box for confirming the pairing not to be displayed during Bluetooth pairing.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Huawei | HarmonyOS | 2.0 | affected |
| Huawei | HarmonyOS | 2.1 | affected |
| Huawei | EMUI | 12.0.1 | affected |
| Huawei | EMUI | 12.0.0 | affected |
| Huawei | EMUI | 11.0.1 | affected |
Weaknesses
- Unstrict permission verification vulnerability
ADP Enrichment
CVE Program Container
Additional References
- https://consumer.huawei.com/en/support/bulletin/2022/11/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
- https://consumer.huawei.com/en/support/bulletin/2022/11/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.