Openatom: >> Openharmony >> 3.1.5 Security Vulnerabilities
The kernel subsystem function check_permission_for_set_tokenid within OpenHarmony-v3.1.5 and prior versions has an
UAF vulnerability which local attackers can exploit this vulnerability to escalate the privilege to root.
CVSS Score
7.8
EPSS Score
0.0
Published
2023-03-10
The ArKUI framework subsystem within OpenHarmony-v3.1.5 and prior versions,
OpenHarmony-v3.0.7 and prior versions
has an Improper Input Validation vulnerability which local attackers can exploit this vulnerability to send malicious data, causing the current application to crash.
CVSS Score
4.0
EPSS Score
0.0
Published
2023-03-10
Page 9