CVE-2023-49142

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Jan 2, 2024

Updated: Jan 5, 2024

CWE ID 416

Summary

CVE-2023-49142 is a vulnerability affecting OpenHarmony versions 3.2.2 and prior. This issue permits a local attacker to trigger a multimedia audio crash by manipulating a released pointer. By doing so, an adversary can potentially execute arbitrary code or cause the system to become unresponsive, leading to a denial-of-service condition. It is crucial for users to apply the necessary patches promptly to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Openharmony

Affected Vendors

Open Harmony

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tl7jIl
https://www.cve.org/CVERecord?id=CVE-2023-49142
https://nvd.nist.gov/vuln/detail/CVE-2023-49142

Back to Vulnerability Database