CVE-2023-39404Improper Input Validation in Huawei Emui

CWE-20Improper Input Validation3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.1%
top 78.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei EmuiHuawei Harmonyos
Timeline
PublishedAug 13

Description

Vulnerability of input parameter verification in certain APIs in the window management module. Successful exploitation of this vulnerability may cause the device to restart.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

CVEListV5huawei/emui13.0.0
NVDhuawei/emui13.0.0
CVEListV5huawei/harmonyos3.0.0, 3.1.0+1
NVDhuawei/harmonyos3.0.0, 3.1.0+1

🔴Vulnerability Details

2
GHSA
GHSA-955r-9ghx-2xf4: Vulnerability of input parameter verification in certain APIs in the window management module2023-08-13
CVEList
CVE-2023-39404: Vulnerability of input parameter verification in certain APIs in the window management module2023-08-13
CVE-2023-39404 — Improper Input Validation in Huawei | cvebase