in OpenHarmony v4.1.0 allow a local attacker with high privileges arbitrary code execution in pre-installed apps through use after free.
Metrics
Affected Vendors & Products
References
History
Wed, 16 Oct 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Openatom
Openatom openharmony |
|
CPEs | cpe:2.3:o:openatom:openharmony:*:*:*:*:-:*:*:* | |
Vendors & Products |
Openatom
Openatom openharmony |
Tue, 08 Oct 2024 14:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 08 Oct 2024 03:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | in OpenHarmony v4.1.0 allow a local attacker with high privileges arbitrary code execution in pre-installed apps through use after free. | |
Title | AccessTokenManager has an use after free vulnerability | |
Weaknesses | CWE-416 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: OpenHarmony
Published: 2024-10-08T03:03:34.327Z
Updated: 2024-10-08T14:02:58.725Z
Reserved: 2024-07-22T03:22:00.866Z
Link: CVE-2024-39831
Vulnrichment
Updated: 2024-10-08T13:55:58.445Z
NVD
Status : Analyzed
Published: 2024-10-08T04:15:07.447
Modified: 2024-10-16T16:53:00.420
Link: CVE-2024-39831
Redhat
No data.