Vulnerability Details CVE-2023-39392
Vulnerability of insecure signatures in the OsuLogin module. Successful exploitation of this vulnerability may cause OsuLogin to be maliciously modified and overwritten.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 11.2%
CVSS Severity
CVSS v3 Score 7.5
References
- https://consumer.huawei.com/en/support/bulletin/2023/8/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725
- https://consumer.huawei.com/en/support/bulletin/2023/8/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725
Products affected by CVE-2023-39392
-
cpe:2.3:o:huawei:emui:12.0.1
-
cpe:2.3:o:huawei:emui:13.0.0
-
cpe:2.3:o:huawei:harmonyos:2.0.1
-
cpe:2.3:o:huawei:harmonyos:3.0.0
-
cpe:2.3:o:huawei:harmonyos:3.1.0