CVE-2022-38701
- EPSS 0.04%
- Veröffentlicht 09.09.2022 15:15:14
- Zuletzt bearbeitet 21.11.2024 07:16:57
OpenHarmony-v3.1.2 and prior versions have a heap overflow vulnerability. Local attackers can trigger a heap overflow and get network sensitive information.
CVE-2022-38700
- EPSS 0.1%
- Veröffentlicht 09.09.2022 15:15:14
- Zuletzt bearbeitet 21.11.2024 07:16:57
OpenHarmony-v3.1.1 and prior versions have a permission bypass vulnerability. LAN attackers can bypass permission control and get control of camera service.
CVE-2022-38081
- EPSS 0.04%
- Veröffentlicht 09.09.2022 15:15:14
- Zuletzt bearbeitet 21.11.2024 07:15:44
OpenHarmony-v3.1.2 and prior versions have a permission bypass vulnerability. LAN attackers can bypass the distributed permission control.To take advantage of this weakness, attackers need another vulnerability to obtain system.
CVE-2022-38064
- EPSS 0.05%
- Veröffentlicht 09.09.2022 15:15:13
- Zuletzt bearbeitet 21.11.2024 07:15:42
OpenHarmony-v3.1.2 and prior versions have a permission bypass vulnerability. Local attackers can bypass permission control and get sensitive information.
CVE-2022-36423
- EPSS 0.13%
- Veröffentlicht 09.09.2022 15:15:10
- Zuletzt bearbeitet 21.11.2024 07:12:58
OpenHarmony-v3.1.2 and prior versions have an incorrect configuration of the cJSON library, which leads a Stack overflow vulnerability during recursive parsing. LAN attackers can lead a DoS attack to all network devices.