CVE-2023-49135

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 2, 2024
Updated: Jan 5, 2024
CWE ID 416

Summary

CVE-2023-49135 is a vulnerability affecting OpenHarmony v3.2.2 and earlier versions. An attacker can exploit this issue by modifying a released pointer, resulting in a multimedia player crash. This vulnerability poses a local threat, meaning an attacker must have prior access to the system to execute the exploit. Successful exploitation could lead to denial-of-service conditions or potentially more severe consequences. Users are encouraged to update their OpenHarmony installations as soon as possible to mitigate the risk associated with this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share