CVSS 3.1 Score 4.3 of 10 (medium)


Published Mar 4, 2024
CWE ID 416


CVE-2023-46708 is a vulnerability found in OpenHarmony v3.2.4 and earlier versions. It allows a local attacker to execute arbitrary code in any application by exploiting a use after free issue. The vulnerability has a risk score of 5 and a base severity level of MEDIUM. No privileges are required for exploitation, and there is no user interaction needed. The attack vector is local, with no impact on integrity or confidentiality. The vulnerability has an exploitability score of 2.5, indicating that it is moderately easy to exploit. OpenHarmony users are advised to update to the latest version to remediate this vulnerability and mitigate the potential danger it poses to their organization's security.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-46708 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options