CVE-2023-23435
CVSS 3.1 Score 7.1 of 10 (high)
Details
Summary
CVE-2023-23435 is a signature management vulnerability affecting certain Honor products. This vulnerability could potentially allow an attacker to overwrite the correct system file with a forged one. The base severity of this vulnerability is rated as HIGH, with a base score of 7.1. The exploitability score is 1.8, indicating that it is relatively easy to exploit. The impact score is 5.2, suggesting that the vulnerability has a significant impact on integrity. The attack vector is local, and the privileges required are low, meaning that an attacker does not need extensive privileges to exploit this vulnerability. There is no user interaction required for exploitation. The potential danger posed by this vulnerability includes the possibility of unauthorized access or modification of system files, which can lead to system compromise or disruption. It is important for organizations using affected Honor products to apply appropriate remediation measures promptly to mitigate the risk posed by this vulnerability and ensure the security of their systems and data. Note: The provided information does not include specific instructions on how to remediate the vulnerability as it was not available in the given text.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions