CVE-2023-49248
CVSS 3.1 Score 5.5 of 10 (medium)
Details
Published Dec 6, 2023
Updated: Dec 12, 2023
CWE ID 20
Summary
CVE-2023-49248 refers to a vulnerability discovered in the Settings app that enables unauthorized file access. This issue allows attackers to bypass security restrictions, potentially granting them access to sensitive files without proper authorization. The consequences of exploiting this vulnerability could lead to data leakage or system compromise. Users are strongly advised to update their software to patch this security flaw as soon as possible. Failure to do so may put their systems at risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- HarmonyOS
- Huawei EMUI
Affected Vendors
- Huawei Technologies