CVE-2023-46773

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Dec 6, 2023
Updated: Dec 11, 2023
CWE ID 276

Summary

CVE-2023-46773 is a newly identified vulnerability affecting the Permission Management System (PMS) module. This issue grants unauthorized access privileges, enabling a malicious actor to escalate their level of authorization within the system. By exploiting this permission management vulnerability, an attacker could potentially gain control over critical functions, leading to significant security risks. Organizations using the PMS module are advised to apply the necessary patches or updates as soon as possible to mitigate this threat. Failure to address this vulnerability could result in serious consequences, including data breaches or unauthorized system access.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • HarmonyOS
  • Huawei EMUI

Affected Vendors

  • Huawei Technologies