CVE-2023-49248

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Dec 6, 2023
Updated: Dec 12, 2023
CWE ID 20

Summary

CVE-2023-49248 refers to a vulnerability discovered in the Settings app that enables unauthorized file access. This issue allows attackers to bypass security restrictions, potentially granting them access to sensitive files without proper authorization. The consequences of exploiting this vulnerability could lead to data leakage or system compromise. Users are strongly advised to update their software to patch this security flaw as soon as possible. Failure to do so may put their systems at risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • HarmonyOS
  • Huawei EMUI

Affected Vendors

  • Huawei Technologies