Lucene search
OpenHarmonyCVELIST:CVE-2024-37030HistoryJul 02, 2024 - 8:13 a.m.
CVE-2024-37030 Arkcompiler Ets Runtime has a use after free vulnerability
2024-07-0208:13:36
CWE-416
OpenHarmony
www.cve.org
1
cve-2024-37030
arkcompiler
ets runtime
openharmony
remote attacker
arbitrary code execution
pre-installed apps
8.2 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
0.001 Low
EPSS
Percentile
39.3%
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through use after free.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "OpenHarmony",
"vendor": "OpenHarmony",
"versions": [
{
"lessThanOrEqual": "4.0.1",
"status": "affected",
"version": "v4.0.0",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
CVE-2024-37030 Arkcompiler Ets Runtime has a use after free vulnerability
2024-07-02 08:13:36
nvd
nvd
CVE-2024-37030
2024-07-02 09:15:18
cve
cve
CVE-2024-37030
2024-07-02 09:15:18
8.2 High
CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
0.001 Low
EPSS
Percentile
39.3%
Related for CVELIST:CVE-2024-37030