{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-07-02T05:23:56.331","vulnerabilities":[{"cve":{"id":"CVE-2022-41577","sourceIdentifier":"psirt@huawei.com","published":"2022-10-14T16:15:20.537","lastModified":"2026-06-17T05:03:25.483","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The kernel server has a vulnerability of not verifying the length of the data transferred in the user space.Successful exploitation of this vulnerability may cause out-of-bounds read in the kernel, which affects the device confidentiality and availability."},{"lang":"es","value":"El servidor del kernel presenta una vulnerabilidad de no verificar la longitud de los datos transferidos en el espacio de usuario. Una explotación con éxito de esta vulnerabilidad puede causar una lectura fuera de límites en el kernel, que afecta a la confidencialidad y disponibilidad del dispositivo"}],"affected":[{"source":"psirt@huawei.com","affectedData":[{"vendor":"Huawei","product":"HarmonyOS","versions":[{"version":"2.0","status":"affected"},{"version":"2.1","status":"affected"}]},{"vendor":"Huawei","product":"EMUI","versions":[{"version":"12.0.0","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.2},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H","baseScore":7.1,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.2}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-05-14T14:47:42.816644Z","id":"CVE-2022-41577","options":[{"exploitation":"none"},{"automatable":"no"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-125"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-125"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*","matchCriteriaId":"A974CA73-84E8-480B-BB4C-4A81D0C985B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:harmonyos:2.0:*:*:*:*:*:*:*","matchCriteriaId":"3AD62E8B-CB4B-43A6-98E8-09A8A1A3505B"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:harmonyos:2.1:*:*:*:*:*:*:*","matchCriteriaId":"BCE0AFB0-A112-484B-BEAD-A7F1BDDCE313"}]}]}],"references":[{"url":"https://consumer.huawei.com/en/support/bulletin/2022/10/","source":"psirt@huawei.com","tags":["Vendor Advisory"]},{"url":"https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697","source":"psirt@huawei.com","tags":["Vendor Advisory"]},{"url":"https://consumer.huawei.com/en/support/bulletin/2022/10/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}