CVE-2022-44553
- EPSS 0.32%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:30
The HiView module has a vulnerability of not filtering third-party apps out when the HiView module traverses to invoke the system provider. Successful exploitation of this vulnerability may cause third-party apps to start periodically.
CVE-2022-44554
- EPSS 0.44%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:31
The power module has a vulnerability in permission verification. Successful exploitation of this vulnerability may cause abnormal status of a module on the device.
CVE-2022-44555
- EPSS 0.44%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:31
The DDMP/ODMF module has a service hijacking vulnerability. Successful exploit of this vulnerability may cause services to be unavailable.
CVE-2022-44557
- EPSS 0.4%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:32
The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality.
CVE-2022-44558
- EPSS 0.57%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:32
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
CVE-2022-44559
- EPSS 0.57%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:32
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
CVE-2022-44560
- EPSS 0.3%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:33
The launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.
CVE-2022-44561
- EPSS 0.35%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 14:15:33
The preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauthorized apps add arbitrary widgets and shortcuts without interaction.
CVE-2022-44562
- EPSS 0.57%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 15:15:57
The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
CVE-2022-44563
- EPSS 0.32%
- Veröffentlicht 09.11.2022 21:15:18
- Zuletzt bearbeitet 01.05.2025 15:15:57
There is a race condition vulnerability in SD upgrade mode. Successful exploitation of this vulnerability may affect data confidentiality.