Vulnerability Details CVE-2023-41310
Keep-alive vulnerability in the sticky broadcast mechanism. Successful exploitation of this vulnerability may cause malicious apps to run continuously in the background.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.8%
CVSS Severity
CVSS v3 Score 3.3
References
- https://consumer.huawei.com/en/support/bulletin/2023/9/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-202309-0000001638925158
- https://consumer.huawei.com/en/support/bulletin/2023/9/
- https://device.harmonyos.com/en/docs/security/update/security-bulletins-202309-0000001638925158
Products affected by CVE-2023-41310
-
cpe:2.3:o:huawei:emui:11.0.1
-
cpe:2.3:o:huawei:emui:12.0
-
cpe:2.3:o:huawei:emui:12.0.1
-
cpe:2.3:o:huawei:emui:13.0.0
-
cpe:2.3:o:huawei:harmonyos:2.0.0
-
cpe:2.3:o:huawei:harmonyos:2.0.1
-
cpe:2.3:o:huawei:harmonyos:2.1.0
-
cpe:2.3:o:huawei:harmonyos:3.0.0
-
cpe:2.3:o:huawei:harmonyos:3.1.0
-
cpe:2.3:o:huawei:harmonyos:4.0.0