CVE-2024-22177

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Apr 2, 2024

Updated: Jan 2, 2025

CWE ID 281

Summary

CVE-2024-22177 is a newly disclosed vulnerability affecting OpenHarmony versions 3.2.4 and older. This issue permits a local attacker to cause apps to crash by manipulating permission requests. By exploiting this weakness, an adversary can potentially gain unintended control over application functionality, leading to denial-of-service conditions or potentially more severe consequences. System administrators are advised to update their OpenHarmony installations to the latest version as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/uDIQ4G
https://www.cve.org/CVERecord?id=CVE-2024-22177
https://nvd.nist.gov/vuln/detail/CVE-2024-22177

Back to Vulnerability Database

CVE-2024-22177

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations