How severe is CVE-2022-43449?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.5 out of 10.

What type of vulnerability is CVE-2022-43449?

This is classified as CWE-20, which is a common weakness in software security.

CVE-2022-43449

MEDIUM Year: 2022

CVSS v3 Score

5.5

Medium

Weakness Type

CWE-20

View all →

Vulnerability Description

OpenHarmony-v3.1.2 and prior versions had an Arbitrary file read vulnerability via download_server. Local attackers can install an malicious application on the device and reveal any file from the filesystem that is accessible to download_server service which run with UID 1000.

CVE-2008-7316

MEDIUM

CVSS:5.5(Medium)

mm/filemap.c in the Linux kernel before 2.6.25 allows local users to cause a denial of service (infinite loop) via a writev system call that triggers an iovec of zero length, followed by a page fault ...

CWE-202008

CVE-2010-3049

MEDIUM

CVSS:5.5(Medium)

Cisco IOS before 12.2(33)SXI allows local users to cause a denial of service (device reboot).

CWE-202010

CVE-2010-3293

MEDIUM

CVSS:5.5(Medium)

mailscanner can allow local users to prevent virus signatures from being updated

CWE-202010

CVE-2010-3373

MEDIUM

CVSS:5.5(Medium)

paxtest handles temporary files insecurely

CWE-202010

CVE-2010-5328

MEDIUM

CVSS:5.5(Medium)

include/linux/init_task.h in the Linux kernel before 2.6.35 does not prevent signals with a process group ID of zero from reaching the swapper process, which allows local users to cause a denial of se...

CWE-202010

CVE-2011-0220

MEDIUM

CVSS:5.5(Medium)

Apple Bonjour before 2011 allows a crash via a crafted multicast DNS packet.

CWE-202011

CVE-2022-43449

Vulnerability Description

Related Vulnerabilities

CVE-2008-7316

CVE-2010-3049

CVE-2010-3293

CVE-2010-3373

CVE-2010-5328

CVE-2011-0220