CVE-2022-44561

Summary

The preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauthorized apps add arbitrary widgets and shortcuts without interaction.

Affected Software

VendorProductVersion RangeStatus
HuaweiHarmonyOS2.0affected
HuaweiEMUI12.0.1affected
HuaweiEMUI12.0.0affected
HuaweiEMUI11.0.1affected

Weaknesses

  • Permission verification vulnerability

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References