CVE-2024-56456 — Classic Buffer Overflow in Huawei Harmonyos
Severity
5.5MEDIUMNVD
CNA6.8
EPSS
0.0%
top 86.00%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJan 8
Description
Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module
Impact: Successful exploitation of this vulnerability may affect availability.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages2 packages
🔴Vulnerability Details
2CVEList▶
CVE-2024-56456: Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module
Impact: Successful exploitation of this vulnera↗2025-01-08
GHSA▶
GHSA-vv9h-75x9-2pjj: Vulnerability of input parameters not being verified during glTF model loading in the 3D engine module
Impact: Successful exploitation of this vulnera↗2025-01-08