CVE-2022-38081

MEDIUM Year: 2022
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-305
View all →

Vulnerability Description

OpenHarmony-v3.1.2 and prior versions have a permission bypass vulnerability. LAN attackers can bypass the distributed permission control.To take advantage of this weakness, attackers need another vulnerability to obtain system.

Related Vulnerabilities

CVE-2022-38064

MEDIUM
CVSS:5.5(Medium)

OpenHarmony-v3.1.2 and prior versions have a permission bypass vulnerability. Local attackers can bypass permission control and get sensitive information.

CWE-3052022

CVE-2023-27538

MEDIUM
CVSS:5.5(Medium)

An authentication bypass vulnerability exists in libcurl prior to v8.0.0 where it reuses a previously established SSH connection despite the fact that an SSH option was modified, which should have pre...

CWE-3052023

CVE-2024-12054

MEDIUM
CVSS:5.4(Medium)

ZF Roll Stability Support Plus (RSSPlus) is vulnerable to an authentication bypass vulnerability targeting deterministic RSSPlus SecurityAccess service seeds, which may allow an attacker to remotely (...

CWE-3052024

CVE-2024-4784

MEDIUM
CVSS:5.4(Medium)

An issue was discovered in GitLab EE starting from version 16.7 before 17.0.6, version 17.1 before 17.1.4 and 17.2 before 17.2.2 that allowed bypassing the password re-entry requirement to approve a p...

CWE-3052024

CVE-2025-30428

MEDIUM
CVSS:5.4(Medium)

This issue was addressed through improved state management. This issue is fixed in iOS 18.4 and iPadOS 18.4, iPadOS 17.7.6. Photos in the Hidden Photos Album may be viewed without authentication.

CWE-3052025

CVE-2019-0042

MEDIUM
CVSS:5.7(Medium)

Juniper Identity Management Service (JIMS) for Windows versions prior to 1.1.4 may send an incorrect message to associated SRX services gateways. This may allow an attacker with physical access to an ...

CWE-3052019