CVE-2022-48301
- EPSS 0.33%
- Veröffentlicht 09.02.2023 17:15:15
- Zuletzt bearbeitet 24.03.2025 21:15:15
The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled.
CVE-2022-48302
- EPSS 0.38%
- Veröffentlicht 09.02.2023 17:15:15
- Zuletzt bearbeitet 24.03.2025 21:15:15
The AMS module has a vulnerability of lacking permission verification in APIs.Successful exploitation of this vulnerability may affect data confidentiality.
CVE-2022-48295
- EPSS 0.33%
- Veröffentlicht 09.02.2023 17:15:14
- Zuletzt bearbeitet 25.03.2025 14:15:19
The IHwAntiMalPlugin interface lacks permission verification. Successful exploitation of this vulnerability can lead to filling problems (batch installation of applications).
CVE-2022-48296
- EPSS 0.28%
- Veröffentlicht 09.02.2023 17:15:14
- Zuletzt bearbeitet 25.03.2025 14:15:19
The SystemUI has a vulnerability in permission management. Successful exploitation of this vulnerability may cause users to receive broadcasts from malicious apps, conveying false alarm information about external storage devices.
CVE-2022-48297
- EPSS 0.4%
- Veröffentlicht 09.02.2023 17:15:14
- Zuletzt bearbeitet 25.03.2025 14:15:19
The geofencing kernel code has a vulnerability of not verifying the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.
CVE-2022-48298
- EPSS 0.4%
- Veröffentlicht 09.02.2023 17:15:14
- Zuletzt bearbeitet 25.03.2025 14:15:19
The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.
CVE-2022-48299
- EPSS 0.42%
- Veröffentlicht 09.02.2023 17:15:14
- Zuletzt bearbeitet 25.03.2025 14:15:20
The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.
CVE-2022-48290
- EPSS 0.45%
- Veröffentlicht 09.02.2023 17:15:13
- Zuletzt bearbeitet 24.03.2025 21:15:14
The phone-PC collaboration module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect data confidentiality and integrity.
CVE-2022-48292
- EPSS 0.2%
- Veröffentlicht 09.02.2023 17:15:13
- Zuletzt bearbeitet 24.03.2025 21:15:15
The Bluetooth module has an out-of-memory (OOM) vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.
CVE-2022-48293
- EPSS 0.2%
- Veröffentlicht 09.02.2023 17:15:13
- Zuletzt bearbeitet 24.03.2025 21:15:15
The Bluetooth module has an OOM vulnerability. Successful exploitation of this vulnerability may affect data confidentiality.