cvedb.io
CVE-2022-42463
HIGH · CVSS 8.3
EPSS exploitation probability: 0%
Published 2022-10-14T15:16:24.883 · Last modified 2026-06-17T05:04:58.140

Summary

OpenHarmony-v3.1.2 and prior versions have an authenication bypass vulnerability in a callback handler function of Softbus_server in communication subsystem. Attackers can launch attacks on distributed networks by sending Bluetooth rfcomm packets to any remote device and executing arbitrary commands.

Affected products

openharmony — openharmony

Does this affect you?

Add your gear to cvedb and we'll alert you only when openharmony ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.