CVE-2024-47137
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Nov 5, 2024
Updated: Nov 6, 2024
CWE ID 787
Summary
CVE-2024-47137 is a vulnerability affecting OpenHarmony version 4.1.0 and earlier releases. An attacker who gains local access can exploit this issue to elevate common permissions to root level, thereby gaining unauthorized privileges. Additionally, sensitive information may be leaked as a result of an out-of-bounds write. This vulnerability poses a significant risk, particularly in environments where local access is not adequately controlled. Users are strongly advised to apply the available patch or upgrade to a patched version as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share