The bundle management subsystem within OpenHarmony-v3.1.4 and prior versions has a null pointer reference vulnerability which local attackers can exploit this vulnerability to cause a DoS attack to the system when installing a malicious HAP package.
History

Mon, 09 Sep 2024 12:45:00 +0000

Type Values Removed Values Added
First Time appeared Openatom
Openatom openharmony
CPEs cpe:2.3:a:openharmony:openharmony:*:*:*:*:-:*:*:* cpe:2.3:o:openatom:openharmony:*:*:*:*:-:*:*:*
Vendors & Products Openharmony
Openharmony openharmony
Openatom
Openatom openharmony

cve-icon MITRE

Status: PUBLISHED

Assigner: OpenHarmony

Published: 2023-03-10T10:45:30.665Z

Updated: 2024-08-02T11:39:06.548Z

Reserved: 2023-03-07T03:52:10.706Z

Link: CVE-2023-25947

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-03-10T11:15:12.377

Modified: 2024-11-21T07:50:29.843

Link: CVE-2023-25947

cve-icon Redhat

No data.