CVE-2023-41304 — Improper Check for Unusual or Exceptional Conditions in Huawei Emui

CWE-754 — Improper Check for Unusual or Exceptional Conditions3 documents3 sources

Severity

5.3MEDIUMNVD

EPSS

0.1%

top 82.08%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Emui Huawei Harmonyos

Timeline

PublishedOct 11

Description

Parameter verification vulnerability in the window module.Successful exploitation of this vulnerability may cause the size of an app window to be adjusted to that of a floating window.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages4 packages

▶CVEListV5huawei/emui13.0.0

▶NVDhuawei/emui13.0.0

▶CVEListV5huawei/harmonyos3.0.0, 3.1.0, 4.0.0+2

▶NVDhuawei/harmonyos3.0.0, 3.1.0, 4.0.0+2

🔴Vulnerability Details

CVEList

CVE-2023-41304: Parameter verification vulnerability in the window module↗2023-10-11

▶

GHSA

GHSA-2r4r-f5qg-rq3g: Parameter verification vulnerability in the window module↗2023-10-11

▶