OpenHarmony-v3.1.2 and prior versions have an incorrect configuration of the cJSON library, which leads a Stack overflow vulnerability during recursive parsing. LAN attackers can lead a DoS attack to all network devices.
References
Link | Resource |
---|---|
https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2022/2022-09.md | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: OpenHarmony
Published: 2022-09-06T00:00:00
Updated: 2022-09-09T14:39:56
Reserved: 2022-09-04T00:00:00
Link: CVE-2022-36423
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-09-09T15:15:10.757
Modified: 2022-10-28T17:33:02.357
Link: CVE-2022-36423
JSON object: View
Redhat Information
No data.