CVE-2023-39409

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Sep 25, 2023

CWE ID 120

Summary

CVE-2023-39409 is a Denial of Service (DoS) vulnerability identified in the PMS module. If exploited, this issue can lead to a system restart, potentially causing downtime and disrupting normal operations. Attackers can trigger the vulnerability by sending specific malformed requests to the affected system. Mitigation measures include updating the PMS module to a patched version and implementing network security controls to block malicious traffic. System administrators are strongly advised to prioritize the application of the patch to minimize the risk of a successful attack.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

HarmonyOS
Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners