CVE-2023-49135
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Jan 2, 2024
Updated: Jan 5, 2024
CWE ID 416
Summary
CVE-2023-49135 is a vulnerability affecting OpenHarmony v3.2.2 and earlier versions. An attacker can exploit this issue by modifying a released pointer, resulting in a multimedia player crash. This vulnerability poses a local threat, meaning an attacker must have prior access to the system to execute the exploit. Successful exploitation could lead to denial-of-service conditions or potentially more severe consequences. Users are encouraged to update their OpenHarmony installations as soon as possible to mitigate the risk associated with this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Openharmony
Affected Vendors
- Open Harmony