CVE-2023-48360

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 2, 2024

Updated: Jan 5, 2024

CWE ID 416

Summary

CVE-2023-48360 is a vulnerability affecting OpenHarmony versions 3.2.2 and prior. An attacker can exploit this issue by modifying a released pointer, triggering a multimedia player crash. This vulnerability grants local access to an attacker, potentially allowing for further exploitation. Successful exploitation could result in software instability, leading to denial-of-service, or even data exposure. It is essential for users to update their OpenHarmony systems as soon as possible to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Openharmony

Affected Vendors

Open Harmony

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tl7-Jl
https://www.cve.org/CVERecord?id=CVE-2023-48360
https://nvd.nist.gov/vuln/detail/CVE-2023-48360

Back to Vulnerability Database