Lucene search

[email protected]CVE-2022-31763

HistoryJun 13, 2022 - 3:15 p.m.

CVE-2022-31763

2022-06-1315:15:00

CWE-476

[email protected]

web.nvd.nist.gov

cve-2022-31763

kernel module

null pointer

out-of-bounds array

vulnerability

exploitation

system availability

nvd

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

5.5 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

11.8%

JSON

The kernel module has the null pointer and out-of-bounds array vulnerabilities. Successful exploitation of this vulnerability may affect system availability.

CPENameOperatorVersion
huawei:harmonyoshuawei harmonyoseq2.0
huawei:emuihuawei emuieq12.0.0

CPE	Name	Operator	Version
huawei:harmonyos	huawei harmonyos	eq	2.0
huawei:emui	huawei emui	eq	12.0.0

References

consumer.huawei.com/en/support/bulletin/2022/6/

device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202206-0000001270350482

Social References

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

5.5 Medium

AI Score

Confidence

High

4.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

0.0004 Low

EPSS

Percentile

11.8%

JSON

Related for CVE-2022-31763

prion1