CVE-2023-41301 — Improper Privilege Management in Huawei Emui

Severity

7.5HIGHNVD

EPSS

0.1%

top 69.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedSep 25

Description

Vulnerability of unauthorized API access in the PMS module. Successful exploitation of this vulnerability may cause features to perform abnormally.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

▶CVEListV5huawei/emui12.0.0, 12.0.1, 13.0.0+2

▶NVDhuawei/emui12.0.0, 12.0.1, 13.0.0+2

▶CVEListV5huawei/harmonyos4 versions+3

▶NVDhuawei/harmonyos4 versions+3

CVEList

CVE-2023-41301: Vulnerability of unauthorized API access in the PMS module↗2023-09-25

▶

GHSA

GHSA-wjgm-r92h-xvvr: Vulnerability of unauthorized API access in the PMS module↗2023-09-25

▶