CVE-2023-44096

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 11, 2023

Updated: Oct 16, 2023

CWE ID 287

CWE ID 307

Summary

CVE-2023-44096 is a recently identified vulnerability that exposes device authentication modules to brute-force attacks. If exploited, this weakness could compromise the confidentiality of related services. Attackers may repeatedly attempt various login combinations to gain unauthorized access, potentially leading to serious security consequences. This issue emphasizes the importance of implementing strong authentication mechanisms and regularly updating software to mitigate such threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HarmonyOS
Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sybOQf
https://www.cve.org/CVERecord?id=CVE-2023-44096
https://nvd.nist.gov/vuln/detail/CVE-2023-44096

Back to Vulnerability Database