CVE-2024-45445

CVSS 3.1 Score 4.0 of 10 (medium)

Details

Published Sep 4, 2024
CWE ID 459

Summary

CVE-2024-45445 identifies a vulnerability in the keystore module that results from resources not being properly closed or released. This issue primarily affects products within the Huawei ecosystem and poses a medium-level risk, with an exploitability score of 2.5. Successful exploitation can impact system availability, as it allows local attackers to potentially disrupt services, although it does not affect data integrity or confidentiality. To remediate this vulnerability, users are advised to apply updates provided in security bulletins from Huawei. The attack vector requires no special privileges or user interaction, suggesting that even low-skill attackers could exploit this flaw if left unaddressed.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share