CVE-2024-21826

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Mar 4, 2024
Updated: Dec 16, 2024
CWE ID 922

Summary

CVE-2024-21826 is a newly disclosed vulnerability affecting OpenHarmony versions 3.2.4 and earlier. An attacker who gains local access to the system can exploit this issue to leak sensitive information through insecure storage. This vulnerability poses a significant risk to data confidentiality and should be addressed promptly through application of the forthcoming patch or update. The exact nature and extent of the information that can be leaked have not been disclosed. System administrators are urged to secure their OpenHarmony installations against this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share