Vulnerability Details CVE-2024-36243
in OpenHarmony v4.0.0 and prior versions allow a remote attacker arbitrary code execution in pre-installed apps through out-of-bounds read and write.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.016
EPSS Ranking 80.9%
CVSS Severity
CVSS v3 Score 8.2
References
Products affected by CVE-2024-36243
-
cpe:2.3:o:openatom:openharmony:-
-
cpe:2.3:o:openatom:openharmony:1.0
-
cpe:2.3:o:openatom:openharmony:2.0
-
cpe:2.3:o:openatom:openharmony:2.2
-
cpe:2.3:o:openatom:openharmony:3.1
-
cpe:2.3:o:openatom:openharmony:3.1.1
-
cpe:2.3:o:openatom:openharmony:3.1.2
-
cpe:2.3:o:openatom:openharmony:3.1.3
-
cpe:2.3:o:openatom:openharmony:3.1.4
-
cpe:2.3:o:openatom:openharmony:3.1.5
-
cpe:2.3:o:openatom:openharmony:3.1.6
-
cpe:2.3:o:openatom:openharmony:3.2
-
cpe:2.3:o:openatom:openharmony:3.2.1
-
cpe:2.3:o:openatom:openharmony:3.2.2
-
cpe:2.3:o:openatom:openharmony:3.2.3
-
cpe:2.3:o:openatom:openharmony:3.2.4
-
cpe:2.3:o:openatom:openharmony:4.0