Vulnerabilities > CVE-2022-44558 - Deserialization of Untrusted Data vulnerability in Huawei Emui and Harmonyos
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
The AMS module has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 5 |
Common Weakness Enumeration (CWE)
References
- https://consumer.huawei.com/en/support/bulletin/2022/11/
- https://consumer.huawei.com/en/support/bulletin/2022/11/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433