exploitDog

CVE-2021-46895

Опубликовано: 13 авг. 2023

Источник: nvd

CVSS3: 9.1

EPSS Низкий

Описание

Vulnerability of defects introduced in the design process in the Multi-Device Task Center. Successful exploitation of this vulnerability will cause the hopped app to bypass the app lock and reset the device that initiates the hop.

Ссылки

https://consumer.huawei.com/en/support/bulletin/2023/8/
Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725
Vendor Advisory
https://consumer.huawei.com/en/support/bulletin/2023/8/
Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:huawei:emui:12.0.0:*:*:*:*:*:*:*

cpe:2.3:o:huawei:harmonyos:2.0.0:*:*:*:*:*:*:*

EPSS

Процентиль: 5%

0.0002

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-701

NVD-CWE-noinfo

Связанные уязвимости

GHSA-6q79-pc48-w8hq

CVSS3: 9.1

github

больше 2 лет назад

Vulnerability of defects introduced in the design process in the Multi-Device Task Center. Successful exploitation of this vulnerability will cause the hopped app to bypass the app lock and reset the device that initiates the hop.

EPSS

Процентиль: 5%

0.0002

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-701

NVD-CWE-noinfo