Vulnerability Details CVE-2023-39398
Parameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be read and written without authorization.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 21.0%
CVSS Severity
CVSS v3 Score 9.1
References
- https://consumer.huawei.com/en/support/bulletin/2023/8/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725
- https://consumer.huawei.com/en/support/bulletin/2023/8/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-202308-0000001667644725
Products affected by CVE-2023-39398
-
cpe:2.3:o:huawei:emui:11.0.1
-
cpe:2.3:o:huawei:emui:12.0.0
-
cpe:2.3:o:huawei:emui:12.0.1
-
cpe:2.3:o:huawei:emui:13.0.0
-
cpe:2.3:o:huawei:harmonyos:2.0.0
-
cpe:2.3:o:huawei:harmonyos:2.0.1
-
cpe:2.3:o:huawei:harmonyos:2.1.0
-
cpe:2.3:o:huawei:harmonyos:3.0.0
-
cpe:2.3:o:huawei:harmonyos:3.1.0