High severity8.3NVD Advisory· Published Dec 8, 2022· Updated Jun 17, 2026
CVE-2022-45877
CVE-2022-45877
Description
OpenHarmony-v3.1.4 and prior versions had an vulnerability. PIN code is transmitted to the peer device in plain text during cross-device authentication, which reduces the difficulty of man-in-the-middle attacks.
Affected products
2<=3.1.4+ 1 more
- (no CPE)range: <=3.1.4
- (no CPE)range: 3.1.0
Patches
Vulnerability mechanics
References
1- gitee.com/openharmony/security/blob/master/en/security-disclosure/2022/2022-12.mdnvdThird Party Advisory
News mentions
0No linked articles in our index yet.