April

We use cookies to improve our site and your experience. By continuing to browse our site you accept our cookie policy. Find out more
Consumer

Smartphones, Laptops & Tablets, Wearables and More

Corporate

About Huawei, Press&Event, and More

Enterprise

Products, Solutions and Services for Enterprise

Carrier

Products, Solutions and Services for Carrier

Popular Products
HUAWEI WATCH GT 5 Pro
HUAWEI WATCH Ultimate
HUAWEI MatePad Pro 12.2-inch
Quick View
Smartphone
Wearable
PC
Tablet
Audio
Router
HUAWEI Mobile Services
enter more search keys

HUAWEI EMUI/Magic UI security updates April 2023

HUAWEI is releasing monthly security updates for flagship models. This security update includes HUAWEI and third-party library patches:

This security update includes the following third-party library patches:

This security update includes the CVE announced in the March 2023 Android security bulletin:

Critical: none

High: CVE-2022-20467, CVE-2023-20911, CVE-2023-20931, CVE-2023-20936, CVE-2023-20957, CVE-2023-20966, CVE-2022-40537, CVE-2021-33655, CVE-2023-20623, CVE-2023-20621

Medium: CVE-2022-33245, CVE-2022-40303

Low: none

Already included in previous updates: CVE-2022-33280

※ For more information on security patches, please refer to the Android security bulletins (https://source.android.com/security/bulletin).

This security update includes the CVE of other third-party library patches:

High:CVE-2023-0266, CVE-2022-38181, CVE-2022-22706

This security update includes the following HUAWEI patches:

CVE-2022-48312: Unauthorized read and write vulnerability in the HwPCAssistant module

Severity: High

Affected versions: EMUI 12.0.0

Impact: Successful exploitation of this vulnerability will affect confidentiality and integrity.

CVE-2022-48313: Vulnerability of bypassing user confirmation during pairing in the Bluetooth module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0

Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2022-48314: Vulnerability of bypassing user confirmation during pairing in the Bluetooth module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2023-1692: Vulnerability of no permission verification in the window management module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2023-1693: Privilege escalation vulnerability in the Settings module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2023-1694: Privilege escalation vulnerability in the Settings module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability may affect confidentiality.

CVE-2023-1696: Data processing vulnerability in the multimedia video module

Severity: High

Affected versions: EMUI 13.0.0, EMUI 12.0.1, EMUI 12.0.0, EMUI 11.0.1

Impact: Successful exploitation of this vulnerability will affect availability.

Leaving consumer.huawei.com
After clicking the link, you will enter a third-party website. Huawei is not responsible and has no control over this third party website.
Return Continue