CVE-2023-49241

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Dec 6, 2023

Updated: Dec 12, 2023

Summary

CVE-2023-49241 is a newly identified vulnerability affecting the network management module's API permission control. This issue allows unauthorized access to sensitive information due to insufficient permission checks. Successful exploitation of this vulnerability may result in a confidentiality breach, potentially leading to significant data leakage or unintended system modifications. Organizations using the affected software are advised to apply the necessary patches as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HarmonyOS
Huawei EMUI

Affected Vendors

Huawei Technologies

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tiwa5r
https://www.cve.org/CVERecord?id=CVE-2023-49241
https://nvd.nist.gov/vuln/detail/CVE-2023-49241

Back to Vulnerability Database