The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitation of this vulnerability may cause out-of-bounds read in the kernel, which affects the device confidentiality and availability.
References
Link | Resource |
---|---|
https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697 | Vendor Advisory |
https://consumer.huawei.com/en/support/bulletin/2022/10/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2022-10-14 09:15
Updated : 2022-10-14 18:51
NVD link : CVE-2022-41577
Mitre link : CVE-2022-41577
JSON object : View
CWE
CWE-125
Out-of-bounds Read
Products Affected
huawei
- emui
- harmonyos