CVE-2023-39384 - AskarLabs CVE Database

CVE-2023-39384

Vendor Huawei

Product HarmonyOS

Weakness CWE-264

Published August 13, 2023

Last update October 10, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Vulnerability of incomplete permission verification in the input method module. Successful exploitation of this vulnerability may cause features to perform abnormally.

Key dates

02Disclosure timeline

August 13, 2023 CVE published

October 10, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-39384

Related vulnerabilities

04Related CVE

CVE-2020-3229 Cisco IOS XE Software Web UI Privilege Escalation Vulnerability CVE-2022-42460 WordPress Traffic Manager plugin <= 1.4.5 - Broken Access Control vulnerability leading to Stored Cross-Site Scripting (XSS) CVE-2019-15960 Cisco Webex Network Recording Admin Page Privilege Escalation Vulnerability CVE-2020-3208 Cisco IOS Software for Cisco 800 Series Industrial Integrated Services Routers Image Verification Bypass Vulnerability CVE-2020-1619 Junos OS: QFX10K Series, EX9200 Series, MX Series, PTX Series: Privilege escalation vulnerability in NG-RE.

Identifiers

CVE CVE-2023-39384

CWE CWE-264

Affected versions

Vendor Huawei

Product HarmonyOS

Affected 3.1.0

Vendor Huawei

Product HarmonyOS

Affected 3.0.0

Vendor Huawei

Product HarmonyOS

Affected 2.1.0

Vendor Huawei

Product HarmonyOS

Affected 2.0.0

Vendor Huawei

Product HarmonyOS

Affected 2.0.1

Vendor Huawei

Product EMUI

Affected 13.0.0

Vendor Huawei

Product EMUI

Affected 12.0.1

Vendor Huawei

Product EMUI

Affected 12.0.0

Vendor Huawei

Product EMUI

Affected 11.0.1