mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-29 01:31:20 +00:00
36 lines
1.1 KiB
JSON
36 lines
1.1 KiB
JSON
{
|
|
"id": "CVE-2022-48518",
|
|
"sourceIdentifier": "psirt@huawei.com",
|
|
"published": "2023-07-06T13:15:10.563",
|
|
"lastModified": "2023-07-06T14:27:22.657",
|
|
"vulnStatus": "Awaiting Analysis",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Vulnerability of signature verification in the iaware system being initialized later than the time when the system broadcasts are sent. Successful exploitation of this vulnerability may cause malicious apps to start upon power-on by spoofing the package names of apps in the startup trustlist, which affects system performance."
|
|
}
|
|
],
|
|
"metrics": {},
|
|
"weaknesses": [
|
|
{
|
|
"source": "psirt@huawei.com",
|
|
"type": "Secondary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-701"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "https://consumer.huawei.com/en/support/bulletin/2023/7/",
|
|
"source": "psirt@huawei.com"
|
|
},
|
|
{
|
|
"url": "https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858",
|
|
"source": "psirt@huawei.com"
|
|
}
|
|
]
|
|
} |