Lucene search

[email protected]NVD:CVE-2023-46756

HistoryNov 08, 2023 - 11:15 a.m.

CVE-2023-46756

2023-11-0811:15:08

[email protected]

web.nvd.nist.gov

permission control

window management

vulnerability

pop-up windows

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.0005 Low

EPSS

Percentile

17.0%

JSON

Permission control vulnerability in the window management module. Successful exploitation of this vulnerability may cause malicious pop-up windows.

Affected configurations

NVD

Node

huaweiharmonyosMatch2.0.0

huaweiharmonyosMatch2.0.1

huaweiharmonyosMatch2.1.0

huaweiharmonyosMatch3.0.0

huaweiharmonyosMatch3.1.0

huaweiharmonyosMatch4.0.0

Node

huaweiemuiMatch11.0.1

huaweiemuiMatch12.0.0

huaweiemuiMatch12.0.1

huaweiemuiMatch13.0.0

References

consumer.huawei.com/en/support/bulletin/2023/11/

device.harmonyos.com/en/docs/security/update/security-bulletins-202311-0000001729189597

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

0.0005 Low

EPSS

Percentile

17.0%

JSON

Related for NVD:CVE-2023-46756

cve1 cvelist1 prion1 cnvd1