CVE-2022-44557 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-44557

CWE

https://cwe.mitre.org/data/definitions/.html

The SmartTrimProcessEvent module has a vulnerability of obtaining the read and write permissions on arbitrary system files. Successful exploitation of this vulnerability may affect data confidentiality.

Affected Software

Name	Vendor	Start Version	End Version
Harmonyos	Huawei	2.0 (including)	2.0 (including)
Harmonyos	Huawei	2.1 (including)	2.1 (including)
Harmonyos	Huawei	3.0.0 (including)	3.0.0 (including)

References

https://consumer.huawei.com/en/support/bulletin/2022/11/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433
https://consumer.huawei.com/en/support/bulletin/2022/11/
https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433