Vulnerabilities > CVE-2022-41592 - NULL Pointer Dereference vulnerability in Huawei Emui and Harmonyos
Attack vector
LOCAL Attack complexity
LOW Privileges required
HIGH Confidentiality impact
NONE Integrity impact
LOW Availability impact
LOW Summary
The phones have the heap overflow, out-of-bounds read, and null pointer vulnerabilities in the fingerprint trusted application (TA).Successful exploitation of this vulnerability may affect the fingerprint service.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 3 |
Common Weakness Enumeration (CWE)
References
- https://consumer.huawei.com/en/support/bulletin/2022/10/
- https://consumer.huawei.com/en/support/bulletin/2022/10/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697