Openharmony@3.1.5 Security Vulnerabilities and Issues — Openharmony@3.1.5 CVE List

Lucene search

OpenatomOpenharmony3.1.5

3 matches found

CVE•added 2023/03/10 11:15 a.m.•41 views

CVE-2023-0083

The ArKUI framework subsystem within OpenHarmony-v3.1.5 and prior versions, OpenHarmony-v3.0.7 and prior versions has an Improper Input Validation vulnerability which local attackers can exploit this vulnerability to send malicious data, causing the current application to crash.

5.5CVSS4.8AI score0.00022EPSS

CVE•added 2023/03/10 11:15 a.m.•40 views

CVE-2023-22436

The kernel subsystem function check_permission_for_set_tokenid within OpenHarmony-v3.1.5 and prior versions has an UAF vulnerability which local attackers can exploit this vulnerability to escalate the privilege to root.

7.8CVSS7.6AI score0.00035EPSS

CVE•added 2023/03/10 11:15 a.m.•37 views

CVE-2023-22301

The kernel subsystem hmdfs within OpenHarmony-v3.1.5 and prior versions has an arbitrary memory accessing vulnerability which network attackers can launch a remote attack to obtain kernel memory data of the target system.

7.5CVSS6.7AI score0.00064EPSS