Shodan
Vulnerabilities
Vulnerable Software
Openatom:  Security Vulnerabilities
CVE-2023-46705
in OpenHarmony v3.2.2 and prior versions allow a local attacker causes system information leak through type confusion.
CVSS Score
6.2
EPSS Score
0.0
Published
2023-11-20
CVE-2023-47217
in OpenHarmony v3.2.2 and prior versions allow a local attacker cause DOS through buffer overflow.
CVSS Score
4.0
EPSS Score
0.0
Published
2023-11-20
CVE-2023-3116
in OpenHarmony v3.2.2 and prior versions allow a local attacker get confidential information or rewrite sensitive file through incorrect default permissions.
CVSS Score
7.3
EPSS Score
0.0
Published
2023-11-20
CVE-2023-4753
OpenHarmony v3.2.1 and prior version has a system call function usage error. Local attackers can crash kernel by the error input.
CVSS Score
3.9
EPSS Score
0.0
Published
2023-09-21
CVE-2023-22301
The kernel subsystem hmdfs within OpenHarmony-v3.1.5 and prior versions has an arbitrary memory accessing vulnerability which network attackers can launch a remote attack to obtain kernel memory data of the target system.
CVSS Score
6.5
EPSS Score
0.003
Published
2023-03-10
CVE-2023-22436
The kernel subsystem function check_permission_for_set_tokenid within OpenHarmony-v3.1.5 and prior versions has an UAF vulnerability which local attackers can exploit this vulnerability to escalate the privilege to root.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-03-10
CVE-2023-24465
Communication Wi-Fi subsystem within OpenHarmony-v3.1.4 and prior versions, OpenHarmony-v3.0.7 and prior versions has a null pointer reference vulnerability which local attackers can exploit this vulnerability to cause the current application to crash.
CVSS Score
5.5
EPSS Score
0.0
Published
2023-03-10
CVE-2023-25947
The bundle management subsystem within OpenHarmony-v3.1.4 and prior versions has a null pointer reference vulnerability which local attackers can exploit this vulnerability to cause a DoS attack to the system when installing a malicious HAP package.
CVSS Score
6.2
EPSS Score
0.0
Published
2023-03-10
CVE-2023-0083
The ArKUI framework subsystem within OpenHarmony-v3.1.5 and prior versions, OpenHarmony-v3.0.7 and prior versions has an Improper Input Validation vulnerability which local attackers can exploit this vulnerability to send malicious data, causing the current application to crash.
CVSS Score
4.0
EPSS Score
0.0
Published
2023-03-10
CVE-2021-33639
REMAP cmd of SVM driver can be used to remap read only memory as read-write, then cause read only memory/file modified.
CVSS Score
7.5
EPSS Score
0.004
Published
2023-03-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved