Vulnerabilities > CVE-2022-41802 - Out-of-bounds Write vulnerability in multiple products

047910
CVSS 3.3 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
LOW
local
low complexity
openharmony
openatom
CWE-787
NVD
Published: 2022-12-08
Updated: 2024-09-09

Summary

Kernel subsystem within OpenHarmony-v3.1.4 and prior versions in kernel_liteos_a has a kernel stack overflow vulnerability when call SysClockGetres. 4 bytes padding data from kernel stack are copied to user space incorrectly and leaked.

Vulnerable Configurations

Part Description Count
Application
Openharmony
11
OS
Openatom
12

Common Weakness Enumeration (CWE)

References