CVE-2023-44114

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 11, 2023

Updated: Oct 13, 2023

CWE ID 125

Summary

CVE-2023-44114 is an out-of-bounds array vulnerability identified in the dataipa module. This issue allows an attacker to write data beyond the allocated memory, potentially affecting service confidentiality. Exploitation of this vulnerability may result in unintended access to sensitive information or system crashes. The dataipa module is a critical component, making this vulnerability a significant threat to system security. Organizations using this module are advised to apply the available patch to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HarmonyOS
Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sybOwJ
https://www.cve.org/CVERecord?id=CVE-2023-44114
https://nvd.nist.gov/vuln/detail/CVE-2023-44114

Back to Vulnerability Database