Описание
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
Уязвимые конфигурации
Конфигурация 1Версия от 4.1.0 (включая) до 5.0.2 (включая)
cpe:2.3:o:openatom:openharmony:*:*:*:*:-:*:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
3.8 Low
CVSS3
7.8 High
CVSS3
Дефекты
CWE-416
Связанные уязвимости
CVSS3: 3.8
github
11 месяцев назад
in OpenHarmony v5.0.2 and prior versions allow a local attacker arbitrary code execution in pre-installed apps through use after free. This vulnerability can be exploited only in restricted scenarios.
EPSS
Процентиль: 11%
0.00038
Низкий
3.8 Low
CVSS3
7.8 High
CVSS3
Дефекты
CWE-416