{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-26T03:07:58.612","vulnerabilities":[{"cve":{"id":"CVE-2022-41578","sourceIdentifier":"psirt@huawei.com","published":"2022-10-14T16:15:21.030","lastModified":"2026-06-17T05:03:25.633","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"The MPTCP module has an out-of-bounds write vulnerability.Successful exploitation of this vulnerability may cause root privilege escalation attacks implemented by modifying program information."},{"lang":"es","value":"El módulo MPTCP presenta una vulnerabilidad de escritura fuera de límites. Una explotación con éxito de esta vulnerabilidad puede causar ataques de escalada de privilegios root implementados mediante la modificación de la información del programa"}],"affected":[{"source":"psirt@huawei.com","affectedData":[{"vendor":"Huawei","product":"HarmonyOS","versions":[{"version":"2.0","status":"affected"},{"version":"2.1","status":"affected"}]},{"vendor":"Huawei","product":"EMUI","versions":[{"version":"12.0.0","status":"affected"},{"version":"11.0.1","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-05-14T20:29:57.222557Z","id":"CVE-2022-41578","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]},{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","type":"Secondary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:emui:11.0.1:*:*:*:*:*:*:*","matchCriteriaId":"511F8CE2-C2B6-4A08-B992-49D9B75B8655"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*","matchCriteriaId":"A974CA73-84E8-480B-BB4C-4A81D0C985B2"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:harmonyos:2.0:*:*:*:*:*:*:*","matchCriteriaId":"3AD62E8B-CB4B-43A6-98E8-09A8A1A3505B"},{"vulnerable":true,"criteria":"cpe:2.3:o:huawei:harmonyos:2.1:*:*:*:*:*:*:*","matchCriteriaId":"BCE0AFB0-A112-484B-BEAD-A7F1BDDCE313"}]}]}],"references":[{"url":"https://consumer.huawei.com/en/support/bulletin/2022/10/","source":"psirt@huawei.com","tags":["Vendor Advisory"]},{"url":"https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697","source":"psirt@huawei.com","tags":["Vendor Advisory"]},{"url":"https://consumer.huawei.com/en/support/bulletin/2022/10/","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202210-0000001416095697","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}