Lucene search
HistorySep 02, 2024 - 5:15 a.m.
CVE-2024-28044
openharmony prior versions
integer overflow
local attacker
crash vulnerability
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.5%
in OpenHarmony v4.1.0 and prior versions allow a local attacker cause crash through integer overflow.
Affected configurations
Node
openatomopenharmonyRange4.0–4.1-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| openatom | openharmony | * | cpe:2.3:o:openatom:openharmony:*:*:*:*:-:*:*:* |
Related
vulnrichment
vulnrichment
CVE-2024-28044 Liteos-A has an integer overflow vulnerability
2024-09-02 03:24:52
cvelist
cvelist
CVE-2024-28044 Liteos-A has an integer overflow vulnerability
2024-09-02 03:24:52
cve
cve
CVE-2024-28044
2024-09-02 05:15:15
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.5%
Related for NVD:CVE-2024-28044