exploitDog

CVE-2021-22420

Опубликовано: 03 авг. 2021

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

A component of the HarmonyOS has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause the underlying trust of the application trustlist mechanism is missing..

Ссылки

https://device.harmonyos.com/cn/docs/security/update/oem_security_update_phone_202106-0000001165452077
Not Applicable
Vendor Advisory
https://device.harmonyos.com/cn/docs/security/update/oem_security_update_phone_202106-0000001165452077
Not Applicable
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:huawei:harmonyos:2.0:*:*:*:*:*:*:*

EPSS

Процентиль: 4%

0.00019

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-668

Связанные уязвимости

GHSA-rwfm-qq63-7jqr

CVSS3: 7.8

github

больше 3 лет назад

A component of the HarmonyOS has a External Control of System or Configuration Setting vulnerability. Local attackers may exploit this vulnerability to cause the underlying trust of the application trustlist mechanism is missing..

EPSS

Процентиль: 4%

0.00019

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-668