CVE-2023-25947

CVSS V2 None CVSS V3 None
Description
The bundle management subsystem within OpenHarmony-v3.1.4 and prior versions has a null pointer reference vulnerability which local attackers can exploit this vulnerability to cause a DoS attack to the system when installing a malicious HAP package.
Overview
  • CVE ID
  • CVE-2023-25947
  • Assigner
  • scy@openharmony.io
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2023-03-10T11:15:12
  • Last Modified Date
  • 2023-03-14T17:58:17
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:openharmony:openharmony:*:*:*:*:-:*:*:* 1 OR 3.1 3.1.4
References
History
Created Old Value New Value Data Type Notes
2023-04-17 06:12:30 Added to TrackCVE
2023-04-17 06:12:34 Weakness Enumeration new