ID
VAR-202208-0817
CVE
CVE-2022-37006
TITLE
Huawei of EMUI and HarmonyOS Vulnerability regarding improper default permissions in
Trust: 0.8
sources:
JVNDB: JVNDB-2022-014550
DESCRIPTION
Permission control vulnerability in the network module. Successful exploitation of this vulnerability may affect service availability. Huawei of EMUI and HarmonyOS There is a vulnerability in improper default permissions.Service operation interruption (DoS) It may be in a state. HUAWEI EMUI is a mobile operating system developed by China Huawei (HUAWEI) based on Android
Trust: 1.8
sources:
NVD: CVE-2022-37006 //
JVNDB: JVNDB-2022-014550 //
VULHUB: VHN-427596 //
VULMON: CVE-2022-37006
AFFECTED PRODUCTS
| vendor: | huawei | model: | emui | scope: | eq | version: | 12.0.0 | Trust: 1.0 |
| vendor: | huawei | model: | harmonyos | scope: | eq | version: | 2.0 | Trust: 1.0 |
| vendor: | huawei | model: | harmonyos | scope: | eq | version: | 2.1 | Trust: 1.0 |
| vendor: | huawei | model: | harmonyos | scope: | - | version: | - | Trust: 0.8 |
| vendor: | huawei | model: | emui | scope: | - | version: | - | Trust: 0.8 |
sources:
JVNDB: JVNDB-2022-014550 //
NVD: CVE-2022-37006
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
JVNDB: JVNDB-2022-014550 //
CNNVD: CNNVD-202208-2745 //
NVD: CVE-2022-37006
PROBLEMTYPE DATA
| problemtype: | CWE-276 | Trust: 1.1 |
| problemtype: | Inappropriate default permissions (CWE-276) [NVD evaluation ] | Trust: 0.8 |
sources:
VULHUB: VHN-427596 //
JVNDB: JVNDB-2022-014550 //
NVD: CVE-2022-37006
THREAT TYPE
remote
Trust: 0.6
sources:
CNNVD: CNNVD-202208-2745
TYPE
other
Trust: 0.6
sources:
CNNVD: CNNVD-202208-2745
PATCH
| title: | HUAWEI EMUI Security vulnerabilities | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=204382 | Trust: 0.6 |
sources:
CNNVD: CNNVD-202208-2745
EXTERNAL IDS
| db: | NVD | id: | CVE-2022-37006 | Trust: 3.4 |
| db: | JVNDB | id: | JVNDB-2022-014550 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-202208-2745 | Trust: 0.7 |
| db: | VULHUB | id: | VHN-427596 | Trust: 0.1 |
| db: | VULMON | id: | CVE-2022-37006 | Trust: 0.1 |
sources:
VULHUB: VHN-427596 //
VULMON: CVE-2022-37006 //
JVNDB: JVNDB-2022-014550 //
CNNVD: CNNVD-202208-2745 //
NVD: CVE-2022-37006
REFERENCES
| url: | https://consumer.huawei.com/en/support/bulletin/2022/8/ | Trust: 2.6 |
| url: | https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202209-0000001392278845 | Trust: 2.5 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2022-37006 | Trust: 1.4 |
| url: | https://device.harmonyos.com/cn/docs/security/update/security-bulletins-202209-0000001392078921 | Trust: 0.6 |
| url: | https://cxsecurity.com/cveshow/cve-2022-37006/ | Trust: 0.6 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
sources:
VULHUB: VHN-427596 //
VULMON: CVE-2022-37006 //
JVNDB: JVNDB-2022-014550 //
CNNVD: CNNVD-202208-2745 //
NVD: CVE-2022-37006
SOURCES
| db: | VULHUB | id: | VHN-427596 |
| db: | VULMON | id: | CVE-2022-37006 |
| db: | JVNDB | id: | JVNDB-2022-014550 |
| db: | CNNVD | id: | CNNVD-202208-2745 |
| db: | NVD | id: | CVE-2022-37006 |
LAST UPDATE DATE
2024-08-14T14:02:28.997000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-427596 | date: | 2022-10-27T00:00:00 |
| db: | VULMON | id: | CVE-2022-37006 | date: | 2022-08-10T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-014550 | date: | 2023-09-20T08:29:00 |
| db: | CNNVD | id: | CNNVD-202208-2745 | date: | 2022-09-19T00:00:00 |
| db: | NVD | id: | CVE-2022-37006 | date: | 2022-10-27T18:38:56.727 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-427596 | date: | 2022-08-10T00:00:00 |
| db: | VULMON | id: | CVE-2022-37006 | date: | 2022-08-10T00:00:00 |
| db: | JVNDB | id: | JVNDB-2022-014550 | date: | 2023-09-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-202208-2745 | date: | 2022-08-10T00:00:00 |
| db: | NVD | id: | CVE-2022-37006 | date: | 2022-08-10T20:16:04.613 |