CVE-2022-46315

HIGH

HarmonyOS < 2.1 - Uncontrolled Resource Consumption in ProfileSDK

Title source: llm

The ProfileSDK has defects introduced in the design process. Successful exploitation of this vulnerability may affect system availability.

Core 3

Core References

Various Sources

Various Sources

Patch, Vendor Advisory

CVSS v3 7.5

EPSS 0.0026

EPSS Percentile 49.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

CWE

CWE-400

Status published

Products (1)

huawei/harmonyos < 2.1

Published Dec 20, 2022

Tracked Since Feb 18, 2026