CVE-2022-48300

🗓️ 09 Feb 2023 00:00:00Reported by huaweiType

The WMS module lacks authentication in some APIs, exposing data confidentiality

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2022-48300	9 Feb 202320:26	–	circl
CNNVD	Huawei HarmonyOS 访问控制错误漏洞	5 Feb 202300:00	–	cnnvd
Cvelist	CVE-2022-48300	9 Feb 202300:00	–	cvelist
EUVD	EUVD-2022-51000	3 Oct 202520:07	–	euvd
NVD	CVE-2022-48300	9 Feb 202317:15	–	nvd
Prion	Design/Logic Flaw	9 Feb 202317:15	–	prion
RedhatCVE	CVE-2022-48300	23 May 202500:28	–	redhatcve
Vulnrichment	CVE-2022-48300	9 Feb 202300:00	–	vulnrichment

NVD

Vulners

Node

huawei emuiMatch11.0.1

huawei emuiMatch12.0.0

huawei emuiMatch12.0.1

huawei harmonyosMatch2.0

huawei harmonyosMatch3.0.0

[
  {
    "vendor": "Huawei",
    "product": "HarmonyOS",
    "versions": [
      {
        "version": "2.0",
        "status": "affected"
      },
      {
        "version": "3.0.0",
        "status": "affected"
      }
    ]
  },
  {
    "vendor": "Huawei",
    "product": "EMUI",
    "versions": [
      {
        "version": "12.0.1",
        "status": "affected"
      },
      {
        "version": "12.0.0",
        "status": "affected"
      },
      {
        "version": "11.0.1",
        "status": "affected"
      }
    ]
  }
]

Source	Link
consumer	www.consumer.huawei.com/en/support/bulletin/2023/2/
device	www.device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474

24 Mar 2025 21:15Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.5

EPSS0.00118

SSVC

CWE-306