Lucene search
HistoryJan 16, 2024 - 9:15 a.m.
CVE-2023-52107
cve-2023-52107
vulnerability
wms module
permission verification
service confidentiality
nvd
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
37.3%
Vulnerability of permissions being not strictly verified in the WMS module. Successful exploitation of this vulnerability may affect service confidentiality.
Affected configurations
Node
huaweiemuiMatch11.0.1
ORhuaweiemuiMatch12.0.0
ORhuaweiemuiMatch13.0.0
ORhuaweiharmonyosMatch2.0.0
ORhuaweiharmonyosMatch2.1.0
ORhuaweiharmonyosMatch3.0.0
ORhuaweiharmonyosMatch3.1.0
ORhuaweiharmonyosMatch4.0.0
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "HarmonyOS",
"vendor": "Huawei",
"versions": [
{
"status": "affected",
"version": "4.0.0"
},
{
"status": "affected",
"version": "3.1.0"
},
{
"status": "affected",
"version": "3.0.0"
},
{
"status": "affected",
"version": "2.1.0"
},
{
"status": "affected",
"version": "2.0.0"
}
]
},
{
"defaultStatus": "unaffected",
"product": "EMUI",
"vendor": "Huawei",
"versions": [
{
"status": "affected",
"version": "13.0.0"
},
{
"status": "affected",
"version": "12.0.0"
},
{
"status": "affected",
"version": "11.0.1"
}
]
}
]Related
cvelist
cvelist
CVE-2023-52107
2024-01-16 08:25:30
nvd
nvd
CVE-2023-52107
2024-01-16 09:15:07
prion
prion
Design/Logic Flaw
2024-01-16 09:15:00
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
0.001 Low
EPSS
Percentile
37.3%
Related for CVE-2023-52107