Vulnerabilities > CVE-2022-48298 - Improper Validation of Specified Quantity in Input vulnerability in Huawei Emui and Harmonyos

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
huawei
CWE-1284

Summary

The geofencing kernel code does not verify the length of the input data. Successful exploitation of this vulnerability may cause out-of-bounds memory access.

Vulnerable Configurations

Part Description Count
OS
Huawei
3