CVE-2023-49135

in OpenHarmony v3.2.2 and prior versions allow a local attacker cause multimedia player crash through modify a released pointer.

CVSS v3 : MEDIUM

Vector :

Exploitability : 1.8 / Impact : 3.6

References

Link	Resource
https://gitee.com/openharmony/security/blob/master/zh/security-disclosure/2024/2024-01.md	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:openharmony:openharmony:*:*:*:*:-:*:*:*

History

No history.

Information

Published : 2024-01-02 08:15

Updated : 2024-01-05 22:04

NVD link : CVE-2023-49135

Mitre link : CVE-2023-49135

CVE.ORG link : CVE-2023-49135

JSON object : View

Products Affected

openharmony

CWE

CWE-416

Use After Free