CVE-2023-49142

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Jan 2, 2024
Updated: Jan 5, 2024
CWE ID 416

Summary

CVE-2023-49142 is a vulnerability affecting OpenHarmony versions 3.2.2 and prior. This issue permits a local attacker to trigger a multimedia audio crash by manipulating a released pointer. By doing so, an adversary can potentially execute arbitrary code or cause the system to become unresponsive, leading to a denial-of-service condition. It is crucial for users to apply the necessary patches promptly to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share