Huawei HarmonyOS PMS Module Input Validation Error Vulnerability

2023-08-1200:00:00

China National Vulnerability Database

www.cnvd.org.cn

huawei harmonyos

pms module

input validation error

vulnerability

exploitable

attacker

desktop unusable

microkernel

distributed operating system

0.0005 Low

EPSS

Percentile

17.0%

JSON

Huawei HarmonyOS is an operating system from Huawei (China). It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from an input validation error vulnerability, which stems from the PMS module’s lax validation of input parameters, and can be exploited by an attacker to render the desktop unusable.

CPENameOperatorVersion
huawei emuieq11.0.1
huawei emuieq12.0.0
huawei emuieq12.0.1
huawei emuieq13.0.0
huawei harmonyoseq2.0.0
huawei harmonyoseq2.0.1
huawei harmonyoseq2.1.0
huawei harmonyoseq3.0.0
huawei harmonyoseq3.1.0

Name	Operator	Version
huawei emui	eq	11.0.1
huawei emui	eq	12.0.0
huawei emui	eq	12.0.1
huawei emui	eq	13.0.0
huawei harmonyos	eq	2.0.0
huawei harmonyos	eq	2.0.1
huawei harmonyos	eq	2.1.0
huawei harmonyos	eq	3.0.0
huawei harmonyos	eq	3.1.0

0.0005 Low

EPSS

Percentile

17.0%

JSON

Related for CNVD-2023-64091