CVE-2023-22301

Опубликовано: 10 мар. 2023

Источник: nvd

CVSS3: 6.5

CVSS3: 7.5

EPSS Низкий

Описание

The kernel subsystem hmdfs within OpenHarmony-v3.1.5 and prior versions has an

arbitrary memory accessing vulnerability which network attackers can launch a remote attack to obtain kernel memory data of the target system.

Ссылки

https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2023/2023-02.md
Third Party Advisory
https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2023/2023-02.md
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:openatom:openharmony:*:*:*:*:-:*:*:*

Версия от 3.1 (включая) до 3.1.5 (включая)

EPSS

Процентиль: 25%

0.00085

Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-20

NVD-CWE-noinfo

Связанные уязвимости

GHSA-3w9h-5fv2-f86j

CVSS3: 7.5

github

почти 3 года назад

The kernel subsystem hmdfs within OpenHarmony-v3.1.5 and prior versions has an arbitrary memory accessing vulnerability which network attackers can launch a remote attack to obtain kernel memory data of the target system.

EPSS

Процентиль: 25%

0.00085

Низкий

6.5 Medium

CVSS3

7.5 High

CVSS3

Дефекты

CWE-20

NVD-CWE-noinfo