The appspawn and nwebspawn services within OpenHarmony-v3.1.2 and prior versions were found to be vulnerable to buffer overflow vulnerability due to insufficient input validation. An unprivileged malicious application would be able to gain code execution within any application installed on the device or cause application crash.
References
Link | Resource |
---|---|
https://gitee.com/openharmony/security/blob/master/en/security-disclosure/2022/2022-12.md | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: OpenHarmony
Published: 2022-12-08T00:00:00
Updated: 2022-12-12T09:47:38.527824Z
Reserved: 2022-11-24T00:00:00
Link: CVE-2022-44455
JSON object: View
NVD Information
Status : Analyzed
Published: 2022-12-08T16:15:13.413
Modified: 2022-12-12T15:49:43.390
Link: CVE-2022-44455
JSON object: View
Redhat Information
No data.
CWE