Lucene search
China National Vulnerability DatabaseCNVD-2023-70289HistoryAug 12, 2023 - 12:00 a.m.
Huawei HarmonyOS Security Restriction Bypass Vulnerability (CNVD-2023-70289)
2023-08-1200:00:00
China National Vulnerability Database
www.cnvd.org.cn
3
huawei
harmonyos
security restriction bypass
servicewifiresources
vulnerability
cnvd-2023-70289
microkernel
insecure signatures
exploitation
malicious modifications
0.0005 Low
EPSS
Percentile
17.8%
Huawei HarmonyOS is an operating system from Huawei (China). It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security restriction bypass vulnerability that stems from the use of insecure signatures in the ServiceWifiResources module, which can be exploited by an attacker to cause malicious modifications to overwrite ServiceWifiResources.
| CPE | Name | Operator | Version |
|---|---|---|---|
| huawei harmonyos | eq | 2.0.1 | |
| huawei harmonyos | eq | 3.0.0 | |
| huawei harmonyos | eq | 3.1.0 |
Related
prion
prion
Design/Logic Flaw
2023-08-13 12:15:00
nvd
nvd
CVE-2023-39393
2023-08-13 12:15:46
cve
cve
CVE-2023-39393
2023-08-13 12:15:46
cvelist
cvelist
CVE-2023-39393
2023-08-13 11:34:33