OpenHarmony-v3.1.2 and prior... CVE-2022-41686

- AV AC AU C I A
发布: 2022-10-14
修订: 2024-11-21

OpenHarmony-v3.1.2 and prior versions, 3.0.6 and prior versions have an Out-of-bound memory read and write vulnerability in /dev/mmz_userdev device driver. The impact depends on the privileges of the attacker. The unprivileged process run on the device could read out-of-bound memory leading sensitive to information disclosure. The processes with system user UID run on the device would be able to write out-of-bound memory which could lead to unspecified memory corruption.

0%
暂无可用Exp或PoC
当前有3条受影响产品信息