{"vulnerability": "cve-2022-4456", "sightings": [{"uuid": "3f97d0de-09d2-4703-8dc1-231138f104d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44562", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14316", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2022-44562\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.\n\ud83d\udccf Published: 2022-11-09T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-01T14:34:10.551Z\n\ud83d\udd17 References:\n1. https://consumer.huawei.com/en/support/bulletin/2022/11/\n2. https://device.harmonyos.com/en/docs/security/update/security-bulletins-phones-202211-0000001441016433", "creation_timestamp": "2025-05-01T15:15:38.000000Z"}, {"uuid": "9473f3ed-00f4-46f8-87ed-92b3606bbf1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44567", "type": "seen", "source": "https://t.me/cibsecurity/55252", "content": "\u203c CVE-2022-44567 \u203c\n\nA command injection vulnerability exists in Rocket.Chat-Desktop <3.8.14 that could allow an attacker to pass a malicious url of openInternalVideoChatWindow to shell.openExternal(), which may lead to remote code execution (internalVideoChatWindow.ts#L17). To exploit the vulnerability, the internal video chat window must be disabled or a Mac App Store build must be used (internalVideoChatWindow.ts#L14). The vulnerability may be exploited by an XSS attack because the function openInternalVideoChatWindow is exposed in the Rocket.Chat-Desktop-API.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-23T18:14:44.000000Z"}, {"uuid": "741e027a-826e-4369-af74-c3bba8ac9eb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44563", "type": "published-proof-of-concept", "source": "Telegram/jxixKB1GGbK3q7ZKTf-z1SAMg-aPMfOcd1311YRna1Tccdk", "content": "", "creation_timestamp": "2023-02-21T13:05:46.000000Z"}, {"uuid": "3340b961-c91e-482b-a7ab-fd715b2eeb12", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44569", "type": "seen", "source": "https://t.me/cibsecurity/73544", "content": "\u203c CVE-2022-44569 \u203c\n\nA locally authenticated attacker with low privileges can bypass authentication due to insecure inter-process communication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-11-03T23:23:36.000000Z"}, {"uuid": "e66d51cf-ea77-4ea7-84d9-693301168104", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44563", "type": "published-proof-of-concept", "source": "Telegram/f_V5WAw89TJE3mX7iA0X18pm5lwQ8AySxeot_kMKmTKhRCw", "content": "", "creation_timestamp": "2023-02-19T21:50:11.000000Z"}, {"uuid": "d069ca5a-a525-45fb-8aa0-3b0922766389", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44563", "type": "published-proof-of-concept", "source": "https://t.me/crackcodes/2638", "content": "\ud83d\udd25\ud83d\udd25\ud83d\udd25REUnziP: Re-Exploiting Huawei Recovery With FaultyUSB(CVE-2022-44563, Toc-ToU race condition vuln can be exploited to achieve arbitrary code execution )\nThis is a new vulnerability in a proprietary mode called \u201cSD-Update\u201d, which can once again be used to achieve arbitrary code execution in the recovery mode, enabling unauthentic firmware updates, firmware downgrades to a known vulnerable version or other system modifications. Taszk advisory for the vulnerability is published here. The story of exploiting this vulnerability was made interesting by the fact that, since the exploit abuses wrong assumptions about the behavior of an external SD card, we needed some hardware-fu to actually be able to trigger it. In this blog post, Lorant Szabo describe how we went about creating \u201cFaultyUSB\u201d - a custom Raspberry Pi based setup that emulates a maliciously behaving USB flash drive - and exploiting this vulnerability to achieve arbitrary code execution as root!", "creation_timestamp": "2023-02-22T17:25:48.000000Z"}, {"uuid": "75087e41-7739-4fc4-bc1c-e2f909f26109", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44565", "type": "seen", "source": "https://t.me/cibsecurity/55251", "content": "\u203c CVE-2022-44565 \u203c\n\nAn improper access validation vulnerability exists in airMAX AC <8.7.11, airFiber 60/LR <2.6.2, airFiber 60 XG/HD <v1.0.0 and airFiber GBE <1.4.1 that allows a malicious actor to retrieve status and usage data from the UISP device.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-23T18:14:42.000000Z"}, {"uuid": "e0485013-29d1-4eac-a8de-5f01b3ee0fd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44564", "type": "seen", "source": "https://t.me/cibsecurity/55504", "content": "\u203c CVE-2022-44564 \u203c\n\nHuawei Aslan Children's Watch has a path traversal vulnerability. Successful exploitation may allow attackers to access or modify protected system resources.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-28T20:12:31.000000Z"}, {"uuid": "8421880c-c08c-44a4-bd0d-b9d427576756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-4456", "type": "seen", "source": "https://t.me/cibsecurity/54450", "content": "\u203c CVE-2022-4456 \u203c\n\nA vulnerability has been found in falling-fruit and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. The attack can be initiated remotely. The name of the patch is 15adb8e1ea1f1c3e3d152fc266071f621ef0c621. It is recommended to apply a patch to fix this issue. VDB-215446 is the identifier assigned to this vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-12-13T20:21:56.000000Z"}, {"uuid": "3acafdd5-b32c-4544-946b-cb2bd620f160", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44562", "type": "seen", "source": "https://t.me/cibsecurity/52794", "content": "\u203c CVE-2022-44562 \u203c\n\nThe system framework layer has a vulnerability of serialization/deserialization mismatch. Successful exploitation of this vulnerability may cause privilege escalation.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-10T00:52:30.000000Z"}, {"uuid": "6908a77b-d411-477d-932a-14d17a21ad96", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44560", "type": "seen", "source": "https://t.me/cibsecurity/52762", "content": "\u203c CVE-2022-44560 \u203c\n\nThe launcher module has an Intent redirection vulnerability. Successful exploitation of this vulnerability may cause launcher module data to be modified.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-10T00:42:47.000000Z"}, {"uuid": "09eabd1b-c577-400e-9bd5-a0c15c7dead4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44561", "type": "seen", "source": "https://t.me/cibsecurity/52771", "content": "\u203c CVE-2022-44561 \u203c\n\nThe preset launcher module has a permission verification vulnerability. Successful exploitation of this vulnerability makes unauthorized apps add arbitrary widgets and shortcuts without interaction.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-11-10T00:46:27.000000Z"}, {"uuid": "0df6d97b-056b-4bef-9844-1e99e97dbf39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2022-44563", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/7775", "content": "#exploit\n1. Proxylogon & Proxyshell & Proxyoracle & Proxytoken & ALL Exchange Server Vulns Summarization\nhttps://github.com/FDlucifer/Proxy-Attackchain\n\n2. CVE-2022-44563:\nHuawei Recovery Update Zip ToC-ToU Vulnerability\nhttps://labs.taszk.io/articles/post/reunzip", "creation_timestamp": "2023-02-18T13:07:01.000000Z"}]}