CVE-2023-34160

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jun 19, 2023

Updated: Jun 27, 2023

CWE ID 290

Summary

CVE-2023-34160 is a vulnerability affecting Huawei desktops, where an attacker can manipulate trustlists. By exploiting this weakness, third-party apps can conceal their icons on the desktop, rendering them undetectable and shielding them from being uninstalled. This issue poses a security risk, allowing unauthorized applications to bypass user controls and remain installed on the affected system.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rs9mWz
https://www.cve.org/CVERecord?id=CVE-2023-34160
https://nvd.nist.gov/vuln/detail/CVE-2023-34160

Back to Vulnerability Database