CVE-2023-34158

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jun 19, 2023

Updated: Jun 27, 2023

CWE ID 290

Summary

CVE-2023-34158 is a newly disclosed vulnerability affecting Huawei desktops. This issue allows an attacker to manipulate trustlists, enabling them to conceal app icons on the desktop and hinder the uninstallation process of affected third-party applications. Successful exploitation of this vulnerability can result in a loss of control over installed software, potentially leading to unauthorized access or data theft. Users are advised to update their systems as soon as patches become available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rs8BtE
https://www.cve.org/CVERecord?id=CVE-2023-34158
https://nvd.nist.gov/vuln/detail/CVE-2023-34158

Back to Vulnerability Database