CVE-2023-39401

CVSS 3.1 Score 9.1 of 10 (high)

Details

Published Aug 13, 2023
Updated: Aug 17, 2023
CWE ID 22

Summary

CVE-2023-39401 is a parameter verification vulnerability affecting the installd module. This issue allows unauthorized read and write access to sandbox files, increasing the risk of data breaches or unintended system modifications. Attackers can potentially exploit this vulnerability to gain elevated privileges or execute malicious code. The vulnerability underscores the importance of rigorous input validation and access control measures to protect systems and maintain the integrity of critical applications.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • HarmonyOS
  • Huawei EMUI

Affected Vendors

  • Huawei Technologies