Lucene search

[email protected]CVE-2023-52383

HistoryMay 14, 2024 - 2:22 p.m.

CVE-2023-52383

2024-05-1414:22:04

CWE-415

[email protected]

web.nvd.nist.gov

double-free

rsmc module

availability

cve-2023-52383

nvd

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

7 High

AI Score

Confidence

Low

2.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

MULTIPLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:M/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

8.7%

JSON

Double-free vulnerability in the RSMC module
Impact: Successful exploitation of this vulnerability will affect availability.

References

consumer.huawei.com/en/support/bulletin/2024/5/

device.harmonyos.com/cn/docs/security/update/security-bulletins-phones-202405-0000001902628049

4.7 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:H

7 High

AI Score

Confidence

Low

2.3 Low

CVSS2

Access Vector

LOCAL

Access Complexity

HIGH

Authentication

MULTIPLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:H/Au:M/C:N/I:P/A:P

0.0004 Low

EPSS

Percentile

8.7%

JSON

Related for CVE-2023-52383

cvelist1