Vulnerability of missing input length verification in the distributed file system. Successful exploitation of this vulnerability may cause out-of-bounds read.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Huawei
  • Harmonyos
  • Emui

Configuration 1 [-]

OR cpe:2.3:o:huawei:emui:12.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:emui:13.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:2.0.1:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:3.0.0:*:*:*:*:*:*:*
cpe:2.3:o:huawei:harmonyos:3.1.0:*:*:*:*:*:*:*
References
Link Resource
https://consumer.huawei.com/en/support/bulletin/2023/7/ Vendor Advisory
https://device.harmonyos.com/en/docs/security/update/security-bulletins-202307-0000001587168858 Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: huawei

Published: 2023-07-06T12:29:12.863Z

Updated: 2023-07-06T12:29:12.863Z

Reserved: 2023-06-29T10:23:01.713Z

Link: CVE-2023-37240

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-07-06T13:15:10.950

Modified: 2023-07-12T17:01:20.263

Link: CVE-2023-37240

JSON object: View

cve-icon Redhat Information

No data.

CWE