CVE-2023-46100
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Nov 20, 2023
Updated: Nov 24, 2023
CWE ID 908
Summary
CVE-2023-46100 is a vulnerability affecting OpenHarmony versions 3.2.2 and earlier. An attacker with local access can exploit uninitialized resources, gaining unintended access to sensitive buffer information. This issue poses a potential security risk, as attackers could use this information for malicious purposes. OpenHarmony developers have released a patch to address this vulnerability. It is recommended that users of these affected versions upgrade to the latest release to mitigate the risk. Unpatched systems may remain vulnerable to local attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Openharmony
Affected Vendors
- Open Harmony