Design/Logic Flaw

2023-02-0917:15:00

PRIOn knowledge base

www.prio-n.com

wms module

authentication mechanism

apis

data confidentiality

vulnerability

7.6 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.3%

The WMS module lacks the authentication mechanism in some APIs. Successful exploitation of this vulnerability may affect data confidentiality.

CPENameOperatorVersion
emuieq11.0.1
emuieq12.0.0
emuieq12.0.1
harmonyoseq2.0
harmonyoseq3.0.0

Name	Operator	Version
emui	eq	11.0.1
emui	eq	12.0.0
emui	eq	12.0.1
harmonyos	eq	2.0
harmonyos	eq	3.0.0

References

consumer.huawei.com/en/support/bulletin/2023/2/

device.harmonyos.com/en/docs/security/update/security-bulletins-202302-0000001454769474