Vulnerabilities > CVE-2022-48301 - Improper Preservation of Permissions vulnerability in Huawei Emui and Harmonyos

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
huawei
CWE-281

Summary

The bundle management module lacks permission verification in some APIs. Successful exploitation of this vulnerability may restore the pre-installed apps that have been uninstalled.

Common Weakness Enumeration (CWE)