CVE-2023-34167

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jun 19, 2023

Updated: Jun 27, 2023

CWE ID 290

Summary

CVE-2023-34167 is a newly discovered vulnerability affecting Huawei desktops. This issue allows an attacker to manipulate trustlists, resulting in third-party apps being able to conceal their icons on the desktop, making them impossible to uninstall without directly accessing the system settings. This deception technique can hinder regular software maintenance and potentially lead to security risks. Users are advised to update their Huawei desktop operating systems to the latest version to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rs9mXZ
https://www.cve.org/CVERecord?id=CVE-2023-34167
https://nvd.nist.gov/vuln/detail/CVE-2023-34167

Back to Vulnerability Database