CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
13.0%
Huawei Aslan Children’s Watch has an improper authorization vulnerability. Successful exploit could allow the attacker to access certain file. (Vulnerability ID:HWPSIRT-2022-62345)
This vulnerability has been assigned a (CVE) ID: CVE-2022-45874
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | aslan-al10_firmware | aslan-al10-ota | cpe:2.3:o:huawei:aslan-al10_firmware:aslan-al10-ota:*:*:*:*:*:*:* |
huawei | aslan-al10_firmware | 11.1.0.118 | cpe:2.3:o:huawei:aslan-al10_firmware:11.1.0.118:*:*:*:*:*:*:* |
huawei | aslan-al10_firmware | aslan-al10 | cpe:2.3:o:huawei:aslan-al10_firmware:aslan-al10:*:*:*:*:*:*:* |