VYPR
High severity8.3NVD Advisory· Published Oct 14, 2022· Updated Jun 17, 2026

CVE-2022-42463

CVE-2022-42463

Description

OpenHarmony-v3.1.2 and prior versions have an authenication bypass vulnerability in a callback handler function of Softbus_server in communication subsystem. Attackers can launch attacks on distributed networks by sending Bluetooth rfcomm packets to any remote device and executing arbitrary commands.

Affected products

2
  • OpenHarmony/Openharmonyllm-fuzzy2 versions
    <=3.1.2+ 1 more
    • (no CPE)range: <=3.1.2
    • (no CPE)range: OpenHarmony-v3.1.x-Release

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.