CVE-2022-48511

CRITICAL

Huawei Emui - Use After Free

Title source: rule

Description

Use After Free (UAF) vulnerability in the audio PCM driver module under special conditions. Successful exploitation of this vulnerability may cause audio features to perform abnormally.

References (2)

Core 2

Core References

Vendor Advisory

https://consumer.huawei.com/en/support/bulletin/2023/7/

Vendor Advisory

https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858

Scores

CVSS v3 9.8

EPSS 0.0016

EPSS Percentile 36.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-843 CWE-416

Status published

Products (2)

huawei/emui 12.0.0

huawei/harmonyos 2.0.0

Published Jul 06, 2023

Tracked Since Feb 18, 2026